top | item 2884027

(no title)

dbuizert | 14 years ago

Good list, but what about security?

SQLInjections etc? You need to have that covered more than the rest in my opinion.

discuss

jeffreyg|14 years ago

I was a bit surprised to see no meniton of security. Any website checklist that includes backups because "your website data is too precious" should have a security assessment on that checklist.

bigfudge|14 years ago

How would you 'check' it, in the sense it could be on a checklist. Are there tools to automate this type of thing?

dbuizert|14 years ago

Good question. I did a quick Google search and here is a solution. http://sqlmap.sourceforge.net/

You could also let a program like Nessus run on your website. But that goes globally and will detect it.

mtogo|14 years ago

You can use the OWASP Top 10 as your checklist for security in many cases.

dbuizert|14 years ago

OWASP is an awesome project. If you really want to be secure use that as a guideline! Thanks for reminding me of that. I couldn't figure the name. All I could think of was WebScarab...