The Office of the CIO presents:
"SQL Injection Prevention"
Friday, October 16th, 2009
10:00 am — 11:30 am
150 University Hall, Oxford Street at University Ave.
Kate Riley and Paul Rivers from IST will discuss and demonstrate SQL
Injection (SQLi) attacks along with prevention and detection techniques.
SQL Injection is a common and potentially catastrophic attack used to
exploit web sites by utilizing a code flaw to alter the SQL statements
submitted to the web site's database.
The presentation will include examples of successful SQLi attacks, how to
prevent SQLi at a code level, a brief discussion on broader ways to
prevent SQLi in existing web sites, and routine maintenance checks to
detect, mitigate or prevent such attacks.
In addition we will demonstrate software tools available to the campus
that will help developers and system administrators test their
applications for injection vulnerabilities.
There will be time for Q&A.
Descriptions and resources from previous Security SIG events can be found
at https://security.berkeley.edu/SIG/.
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
-
Webnet information is available at http://webnet.berkeley.edu. Email sent to this list is archived at http://ls.berkeley.edu/mail/webnet/ . This archive is open to the general public and browsable by search engine spiders, email-address harvesting robots, your bosses, etc.
Received on Tue Oct 06 2009 - 08:12:03 PDT
This archive was generated by hypermail 2.2.0 : Tue Oct 06 2009 - 08:12:05 PDT