Securing Your Site in Development and Beyond
By Michael Akopov
Why wait until production deployment to identify security vulnerabilities? Using tools like Burp Suite, you can find security vulnerabilities before they’re exposed on the web, establishing a firmer trust between your website and your client. We explore using tools such as Burp Suite and more to validate proper Apache/NGINX configurations, and to be compliant with modern configuration standards such as OWASP Secure Headers Project and SSL Labs recommendations. In this article, you will see examples of vulnerabilities which were detected early on, as well as how to integrate these practices into your daily workflow.
This article was originally published in the January 2018 issue of php[architect] magazine. To read the complete article please subscribe or purchase the complete issue.
Leave a comment
Use the form below to leave a comment: