The Open Web Application Security Project (OWASP)

This forum is only for questions or discussions about working with the mojoPortal source code in Visual Studio, obtaining the source code from the repository, developing custom features, etc. If your question is not along these lines this is not the right forum. Please try to post your question in the appropriate forum.

Please do not post questions about design, CSS, or skinning here. Use the Help With Skins Forum for those questions.

This forum is for discussing mojoPortal development

You can monitor commits to the repository from this page. We also recommend developers to subscribe to email notifications in the developer forum as occasionally important things are announced.

Before posting questions here you might want to review the developer documentation.

Do not post questions about design, CSS, or skinning here. Use the Help With Skins Forum for those questions.

This thread is closed to new posts. You must sign in to post in the forums.

8/5/2008 12:29:22 PM

atwork8

Total Posts 48

View Posts

The Open Web Application Security Project (OWASP)

Hi Joe,

I came across OWASP a while back when I was working on a Classic ASP app and found their "Reform library" really helpful. There is a .net implementation of it, not sure if it would be of any use in mojoPortal?

Thanks,

Reiss :o)

8/5/2008 12:38:04 PM

Joe Audette

Total Posts 18439

View Posts

Re: The Open Web Application Security Project (OWASP)

Hi Reiss,

It looks interesting, I was on their mailing lists for a while a few years ago.

But, I'm very satisified with our current use of NeatHtml for preventing cross site scripting and other attacks. We have no sql injection vulnerabilities because we always use paramterized queries for every supported database and never concatenate user input into sql statements.

Best,

Joe

You must sign in to post in the forums. This thread is closed to new posts.