Technical
Sub-Categories
- No categories
Category Posts
Security issues in a web application - 12 Aug 2008
Cacheable Login Page Found
It is possible to steal or manipulate user session and cookies, which may be used to
Impersonate a legitimate user, allowing the hacker to view or alter user details, and to perform transactions o behalf of that user.
Do not allow caching of login pages. Discuss with solution architect in your project to […]
Security, the key factor for any web application - 25 Jul 2008
There are a few coding causing security breaches in any web applications. Application security is a key factor and need to be considered equally important as the business functionality. Guidelines document of a project should contain are not just best practises, they are mandatory. Code review (manual or automated) should reject the release if a […]
Read Full Post »Security:Production data are not used for testing or development - 21 Jul 2008
Development team should make sure their configuration is not point to production environment. Development team lead should validate the configuration file that is used by their team.
Suggestion: It is suggested that development lead should to take control configuration file and need to be circulated among the team members. Or alternative check this in […]
The Testing Processes - 31 May 2008
The process of testing ensures that:
Testing is planned and performed to establish that the software satisfies the requirements
Test results are documented and verified
Only tested and approved software is released
This process covers the testing phase of the software development life cycle. Irrespective of the Life Cycle Model chosen, this process becomes applicable during the testing phase […]
Read Full Post »