spacer
Web Development Tutorials HTML Tutorials
 Developer Newsletter

Tutorials
AJAX
ASP
CGI & Perl
CSS
Flash
HTML
Illustrator
Java
JavaScript
Linux
MySQL
PHP
Photoshop
Python
Wireless
XML
Miscellaneous


Scripts Directory
AJAX Scripts
ASP Scripts
ASP.NET Scripts
CGI & Perl Scripts
Flash Scripts
Java Scripts
JavaScript Scripts
PHP Scripts
Python Scripts
Remotely Hosted Scripts
Tools & Utilities Scripts
XML Scripts

Web Hosting Directory
ASP.NET
Budget
Dedicated Servers
Ecommerce
Linux
Resellers
Shared
Small Business
Windows

Developer Manuals
Learn HTML
Learn PHP
Learn CSS
Learn AJAX
Learn JavaScript
Learn Pear
Free White Papers

Developer Resources
Developer Tools
Developer Content
Survey Software
Dedicated Servers

Testing Your Forms for Hijacking Vulnerability

By Will Bontrager
2005-10-07


Testing Your Forms for Hijacking Vulnerability

DISCLAIMER: Experience has taught me it is impossible to know everything in cracker minds. Common sense security precautions when programming software go a long way to reducing vulnerabilities. And I've learned to anticipate things and reduce vulnerabilities ahead of time. But I can not, and I do not claim to, know everything software crackers have tried and will try in the future.

Look at this article as a "how-to" for testing your forms for a specific vulnerability, hijacking by inserting certain information into the header of email your form processing software sends out.

These tests may not be exhaustive. Crackers have devious minds and may even now be thinking of hijacking methods I haven't considered.

This article will, however, show you how to discover currently targeted vulnerabilities your form processing software might have, vulnerabilities mentioned in the "Web Page Form Anti-Hijacking Considerations" article found at http://willmaster.com/hijack1 (demonstrates how to modify software to close the hijacking vulnerability).



Tutorial Pages:
» Testing Your Forms for Hijacking Vulnerability
» Want To Skip Testing?
» Is a Spammer Spider On the Loose?
» Why Should I Test?
» Won't Spammers Use this Article To Find Vulnerable Forms?
» How Do I Test?
» Now What?


Copyright 2004 Bontrager Connection, LLC

 | Bookmark Print |   Write For Us
Related Tutorials:
» Enrich Your Web Applications
» Microsoft Complicates HTML Emails With Outlook 2007
» Control Your Domain Registration Data
» HTML Forms POST, GET
» HTML Tables
» Navigation Bar and Bulleted Lists



About the NetVisits, Inc Network | Write For Us | Advertise
Copyright ©2007 NetVisits, Inc Network. All Rights Reserved. Privacy Policy. 		Visit other NetVisits, Inc. sites: