Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsWhite Papers
Discussion GroupsFirst AidDatabasesJavaBeansGUIJava 3DVirtual MachineCORBASecurityToolsGeneral
Java DirectoryOpen Source ProjectsSample Book ChaptersUser GroupsWeb Resources
Related Topics
Databases.NETMore Topics ...
Java Forum / Security / August 2003

Tip: Looking for answers? Try searching our database.

Web Application Security

Thread view: 
Enable EMail AlertsStart New Thread
Ricky - 25 Aug 2003 12:16 GMT
Hello,

Can I find any Best Practices considering how to secure your
Web Application (jsp, servlet/filter)?

I mean both progmatically ant those which can be defined e.g. to web.xml etc.

Can anyone point me any URLs?

Thanks,
Reply to this Message
Wolfram Rittmeyer - 27 Aug 2003 08:39 GMT
> Hello,
>
[quoted text clipped - 6 lines]
>
> Thanks,

You could start with the J2EE-tutorial by sun (and the security-related
parts of it)
http://java.sun.com/j2ee/tutorial/1_3-fcs/doc/Security.html

and with the SUN blueprints:
http://java.sun.com/blueprints/guidelines/designing_enterprise_applications_2e/s
ecurity/security.html

They provide a very good overview. For using db-based authorization you
also have to look at your containers documentation since mapping
db-users to web.xml roles is container-specific.

Wolfram Rittmeyer
http://www.jsptutorial.org
Reply to this Message


Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.