Post Response To Forum

User Generated

fea6758

Writing

Description

Hello, I need help with two tasks?

Task 1: Go the Open Web Application Security Project (OWASP) web site and read about the Top 10 Web Application Security risks list. Pick a risk that interests you and explain why it is important to you. Post your response to this forum in 4-5 paragraphs.

Note: Please include the references.

Task 2: Also post a reply to at least one other person’s post in 2-3 paragraphs.

* For Task 2, I am attaching one of my friend post below with the name of the document " Friend_Post" and he given response to above forum(Task 1) and you need to read his post and reply to his post in 2-3 paragraphs.

Thanks.

Unformatted Attachment Preview

My Friend Post to Forum: Introduction: Security misconfiguration is the most commonly seen issue. This is commonly a result of insecure default configurations, incomplete or ad hoc configurations, open cloud storage, misconfigured HTTP headers, and verbose error messages containing sensitive information. Not only must all operating systems, frameworks, libraries, and applications be securely configured, but they must be patched and upgraded in a timely fashion. Security Misconfiguration arises when Security settings are defined, implemented, and maintained as defaults. Good security requires a secure configuration defined and deployed for the application, web server, database server, and platform. It is equally important to have the software up to date. Some classic examples of security misconfiguration are as given • If Directory listing is not disabled on the server and if attacker discovers the same, then the attacker can simply list directories to find any file and execute it. It is also possible to get the actual code base which contains all your custom code and then to find a serious flaw in the application. • App server configuration allows stack traces to be returned to users, potentially exposing underlying flaws. Attackers grab that extra information that the error messages provide which is enough for them to penetrate. • App servers usually come with sample apps that are not well secured. If not removed from production server would result in compromising your server. Conclusion: I picked this topic because I have read article from Open Web Application Security Project (OWASP) and found this topic interested. References: https://www.tutorialspoint.com/security_testing/testing_security_misconfiguration.htm https://hdivsecurity.com/owasp-security-misconfiguration My Response to above Post: Write 2-3 paragraphs response.
Purchase answer to see full attachment
User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

All the...


Anonymous
Awesome! Perfect study aid.

Studypool
4.7
Trustpilot
4.5
Sitejabber
4.4

Similar Content

Related Tags