Lab #11 - Security
Purpose: Security
Instructions
- Please use your solution from Lab #10, you may correct your solution with my solution if it was not working
- You will be submitting a report for this lab, in addition to uploading code to the server. There are instructions throughout the lab that help you build the report as you go
- Develop a list of security checks that need to be performed in order to ensure that your site is secure. Many of these checks were listed as part of the labs, but there are additional ones that you can list beyond that as well. The list should include at least 8 tasks, and each task should be specific and articulate
- Go through your site, and test each of these tasks. If your site fails to meet the requirement, make an indication of such
- Attempt to fix the various failed tasks. Document for each of the tasks what corrective action you took in your code, and whether you were able to fix it. If you were not able to fix it, document what might need to change to fix it
- SQL Injection attacks are difficult to test for, but document what actions your site takes to help prevent that. Recall that an SQL Injection attack is one where the visitor to the site attempts to execute their own SQL by providing inputs to your SQL that attempt to be interpretted as part of the SQL rather than a "value" in the SQL
- Upload your PHP file(s) (if you have not been doing that to test your code as you go), to the remote server. Place the file in "public_html/csci2006/lab11/
- In a web-browser, go to the URL below
Submitting Instructions
- Upload the report you have generated to D2L