PEAK XOOPS - Re: Security scanner for modules? 
TOP
>
Forum
>
XOOPS Modules
>
Protector
>
Security scanner for modules?
>
Re: Security scanner for modules?
Re: Security scanner for modules?
Re: Security scanner for modules?
msg# 1.1
- depth:
- 1
GIJOE
Posts: 4110
Posts: 4110
hi frankblack.
it is not easy to find security holes in some modules automatically, I think.
For example, although we know that the vulnerablity of SQL Injection is caused by forgot sanitizing requests, We can't make the forgot pattern in the php codes easily.
On the other hand, protecting SQL Injection is not so difficult.
Because It is enough to check all requests before parsing common.php.
Thus, I recommend "Xoops Protector" to all XOOPSers with confidence.
it is not easy to find security holes in some modules automatically, I think.
For example, although we know that the vulnerablity of SQL Injection is caused by forgot sanitizing requests, We can't make the forgot pattern in the php codes easily.
On the other hand, protecting SQL Injection is not so difficult.
Because It is enough to check all requests before parsing common.php.
Thus, I recommend "Xoops Protector" to all XOOPSers with confidence.
Votes:0
Average:0.00
Posts tree
-
Security scanner for modules?
(frankblack, 2004/9/23 8:01)
-
Re: Security scanner for modules?
(GIJOE, 2004/9/23 18:26)
-
Re: Security scanner for modules?
(frankblack, 2004/9/23 20:40)
-
Re: Security scanner for modules?
(GIJOE, 2004/10/28 19:07)
-
-
-
Login