Creating web applications can be quite easy. But creating secure web applications? That's more complicated. Sure, you could analyse your site for problems, as we've discussed in recent issues (219-221). That helps, but you won't detect every possible problem, so you'll need another security layer, such as a Web Application Firewall (WAF). A WAF is a server module, plug-in or similar software layer that examines HTTP traffic coming into your site. Like a software firewall on your desktop, it looks for signs common to attacks, then blocks suspect connections to keep you safe.
展开▼