课程: Programming Foundations: Web Security
今天就开通帐号,24,600 门业界名师课程任您挑!
Strong passwords
- Developers must be smart about passwords in order to protect against credential attacks. The following advice is good for everyone, but it's especially important when passwords are used to administer servers. You should use long passwords with at least 12 characters. 12 is a minimum. 15 characters or more would be even better. It's good to use character variety; uppercase, lowercase, numbers and symbols but variety is not as important as the length. A common mistake is to think that a short, complex password is more secure than a simple, long one. Any eight character password, even one with character variety, can be discovered by trial and error in less than three hours. A 12 character password using all lowercase letters would take two weeks. If you use both length and variety together then a 12 character password would take 9,000 years. You should also avoid patterns and dictionary words, we already know that hackers…
下载课程离线学习
下载课程到移动设备,轻松离线学习。在领英学习 iOS 或安卓版 APP 下载课程
内容
-
-
-
-
-
-
(已锁定)
Types of credential attacks4 分钟 55 秒
-
(已锁定)
Strong passwords4 分钟 1 秒
-
(已锁定)
URL manipulation and Insecure Direct Object Reference (IDOR)4 分钟 43 秒
-
(已锁定)
SQL injection6 分钟 16 秒
-
(已锁定)
Cross-Site Scripting (XSS)6 分钟 15 秒
-
(已锁定)
Cross-Site Request Forgery (CSRF)4 分钟 21 秒
-
(已锁定)
Cross-Site Request protections3 分钟 38 秒
-
(已锁定)
Cookie visibility and theft4 分钟 37 秒
-
(已锁定)
Session hijacking5 分钟 8 秒
-
(已锁定)
Session fixation3 分钟 18 秒
-
(已锁定)
Remote system execution2 分钟 8 秒
-
(已锁定)
File upload abuse2 分钟 59 秒
-
(已锁定)
Denial of service4 分钟 55 秒
-
(已锁定)
-