This event has ended. Create your own event → Check it out
This event has ended. Create your own
View analytic
Wednesday, October 23 • 11:15am - 1:05pm
(Tutorial) Multi-layered Web Security with Linux - Konstantin Ryabitsev, The Linux Foundation

Sign up or log in to save this to your schedule and see who's attending!

Robust web application security involves many layers -- from the operating system, to the web server, to the application code itself. This tutorial will look at most common web vulnerabilities (cross-site scripting, SQL, code and shell injections, cross-site request forgery, session hijacking, session fixation, etc), and offer best-practice advice on avoiding them in your web application. We will then investigate additional security tools available under Linux: SELinux to set up a strict sandbox around your webserver, mod_suPHP and Suhosin to help secure your PHP installations, and ModSecurity to help intercept web attacks before they even get to your application. Basic knowledge of HTTP and Apache is required.

avatar for Konstantin Ryabitsev

Konstantin Ryabitsev

Sr. Systems and Network Administrator, The Linux Foundation
Konstantin Ryabitsev started programming in 1995 when CGIs ruled the web, and then spent a few years writing large applications in PHP. In 2001, he joined Duke University Physics (birthplace of YUM and early cradle of the Fedora Project) as a Linux systems administrator. After moving to Montreal in 2005, he worked as a Senior Web Programmer for the McGIll university core web team, and then as a Senior IT Security Analyst for the Information... Read More →

Wednesday October 23, 2013 11:15am - 1:05pm
Lennox 1

Attendees (43)