|
Secrets of RSS
|
|
Hits: 2 |
|
Date added: 10/19/2006 |
|
Whether you want to create your own RSS feeds or just would like to locate and add them to your Web site, this is the book for you. In the Secrets of RSS, author Steve Holzner provides real-world guidance and advice to introduce you everything you need to know about effectively implementing and using RSS:
• How to connect to RSS feed, handle them, and track down what you want
• The difference between RSS and blogs, and how nearly every major RSS reader works
• How to design an RSS feed, what you'll find in RSS feeds, and formats and links
• Create your own first RSS feed from scratch:and subscribe to it
• Putting RSS to work in the real-world
• The free tools and software available to help you create RSS files
• Finding, subscribing to, and creating podcasts
• Spreading the word about your RSS feed
• RSS best practices
• And more! |
|
|
|
|
|
Second-order Code Injection Attacks
|
|
Hits: 1 |
|
Date added: 07/30/2005 |
|
Many forms of code injection targeted at web-based applications (for instance cross-site scripting and SQL injection) rely upon the instantaneous execution of the embedded code to carry out the attack (e.g. stealing a user's current session information or executing a modified SQL query). In some cases it may be possible for an attacker to inject their malicious code into a data storage area that may be executed at a later date or time. Depending upon the nature of the application and the way the malicious data is stored or rendered, the attacker may be able to conduct a second-order code injection attack.
A second-order code injection attack can be classified as the process in which malicious code is injected into a web-based application and not immediately executed, but instead is stored by the application (e.g. temporarily cached, logged, stored in a database) and then later retrieved, rendered and executed by the victim. |
|
|
|
|
|
|
Search Engines Used to Attack Databases
|
|
Hits: 17 |
|
Date added: 06/08/2007 |
|
Database security has recently become the victim of misused search engines. Over the last year or so, Hackers have begun to
use search engines to find potentially vulnerable web applications to attack. The search engine doesn’t actually execute any
attacks, rather it is used to quickly locate “soft targets” among the vast number of sites on the internet. The hacker then targets
the vulnerable sites with attacks designed to exploit the specific holes discovered by the search engine. |
|
|
|
|
|
|
|
|
