Les Blogs de Microsoft France [OPML] Les Bloggueurs de Microsoft France : Antoine Driard Arnaud Gstach Benjamin Gauthey Christophe Lauer Damien Caro *** Lantim Eric Mittelette Eric Vernié Fabrice Meillon François Mérand Guillaume Renaud Jihad Dannawi Julien Codorniou Laurent Bonnet Laurent Ellerbach Laurent Herbulot Lucas Riedberger Mitsu Furuta Pascal Belaud Patrick Guimonnet Pascal Belaud (Olymars) Patrice Manac'h Patrick Duboys Pierre Lagarde Sébastien Bovo Stanislas Quastana Stéphane Papp Thomas Lucchini Team Media Center
<script language="JavaScript1.1" type="text/javascript"> <!-- Xt_param = 's=168056&p='; Xt_r = document.referrer; Xt_h = new Date(); Xt_i = '=4) {Xt_s=screen;Xt_i+='&r='+Xt_s.width+'x'+Xt_s.height+'x'+Xt_s.pixelDepth+'x'+Xt_s.colorDepth;} document.write(Xt_i+'&ref='+Xt_r.replace(/[<>"]/g, '').replace(/&/g, '$')+'" title="Analyse d\'audience">'); //--> </script> <noscript> audit et mesure d'audience visiteurs internet par </noscript>
<!-- Start of Flickr Badge --> <style type="text/css"> .zg_div {margin:0px 5px 5px 0px; width:117px;} .zg_div_inner {border: solid 1px #000000; background-color:#ffffff; color:#666666; text-align:center; font-family:arial, helvetica; font-size:11px;} .zg_div a, .zg_div a:hover, .zg_div a:visited {color:#3993ff; background:inherit !important; text-decoration:none !important;} </style> <script type="text/javascript"> zg_insert_badge = function() { var zg_bg_color = 'ffffff'; var zgi_url = 'http://www.flickr.com/apps/badge/badge_iframe.gne?zg_bg_color='+zg_bg_color+'&zg_person_id=51333257%40N00'; document.write('<iframe style="background-color:#'+zg_bg_color+'; border-color:#'+zg_bg_color+'; border:none;" width="113" height="151" frameborder="0" scrolling="no" src="'+zgi_url+'" title="Flickr Badge"><\/iframe>'); if (document.getElementById) document.write('
According to a study by WebCohort, only 10% of the web applications are secured. Pretty scary. (Well, remember that Webcohort is a security company that sells security consulting. This conclusion serves their interests :))
These conclusions are also true for all platforms, all development languages and technologies. The interesting thing in this is that the vulnerabilities that they have discovered are not in the HTTP server "X" nor in the operating system "Y" but in the developer's code! These applications include e-commerce, online banking, enterprise collaboration, and supply chain management sites - not really your sister's homepage...
Most Common Application Layer Vulnerabilities (Source: Webcohort)
Funny... I think that some people should be educated to this. They should care more about how trained are their developers on security rather than complaining about the supposed weaknesses of Microsoft's products.
</RANT>
Pingback from | studyonly.info