Title: SQL Injection Defenses
First Edition: March 2007
Series: Short Cut
Format: PDF
ISBN 10: 0-596-52964-3
ISBN 13: 9780596529642
Pages: 39
PDF description from O'Reilly:
"This Short Cut introduces you to how SQL injection vulnerabilities work, what makes applications vulnerable, and how to protect them. It helps you find your vulnerabilities with analysis and testing tools and describes simple approaches for fixing them in the most popular web-programming languages.
This Short Cut also helps you protect your live applications by describing how to monitor for and block attacks before your data is stolen.
Hacking is an increasingly criminal enterprise, and web applications are an attractive path to identity theft. If the applications you build, manage, or guard are a path to sensitive data, you must protect your applications and their users from this growing threat."
The pdf description is pretty accurate and takes a look at one of the top ten attacks: sql injection. If you are a hacker or a cracker, this book is for you. Beginners should use it to get their programming pointed in the right direction.. Experts should use it to get their minds pointed in the right direction. Hard to be very comprehensive in 39 pages, but the points made are clear and concise.
This book is organized into conceptual divisions:
Sql injection defenses
Why should you care
How applications work
Attacks
Defenses
Conclusions and the Bottom Line
The bottom line for readers is to get this book right away and make sure you use it every day. It helps keep the concepts straight and on the straight and narrow.
Four stars because it is hard for a book like this to be definitive, else five stars.
Frederick J Eccher Jr.
MBA
M.S. Management of Information Systems
A.B. Psychology
B.A. Biology
CIO, Community Partners
President, Board of Directors, Saint Louis Visual Basic Users Group
rick@stlvbug.net
|
