[WEB SECURITY] AT&T exposes /etc/passwd , bad php

Dee damien.watson at gmail.com
Mon Jul 27 21:20:46 EDT 2009


2009/7/28 Matt Parsons <mparsons1980 at gmail.com>:
> Personally, I would have written the application
> in a language that is a bit more secure like .NET or Java.

And you can still fail to validate data at the relevant boundary in
.NET and Java.

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/archive/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA



More information about the websecurity mailing list