This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Codereview-Deployment

From OWASP
Revision as of 14:50, 25 August 2008 by EoinKeary (talk | contribs) (New page: === Secure application deployment === Outside of the actual code to review one must examine if the deployment of a web application is within a secure environment. Having secure code but t...)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Secure application deployment

Outside of the actual code to review one must examine if the deployment of a web application is within a secure environment. Having secure code but the envronment upon which the code resides is a lost cause. Accessing resources directly muct be controlled within the environment;

Areas such as configuration files, directories, & resources which need authorisation need to be secured on the host such that direct access to such artifacts is disallowed.

Retrieved from "https://wiki.owasp.org/index.php?title=Codereview-Deployment&oldid=37175"