Frameworks: Making security auditing easy

I was tasked recently with auditing an application's security, which is always a tedious process. Luckily, I was only reviewing the application code, not the platform or infrastructure running the app. The application was not written using an MVC framework, so I began by crawling through source code. It took a while, as each .cfm file contained business logic, data access, and display code. ...

[Read more on Joe Rinehart's blog]

Comments (Comment Moderation is enabled. Your comment will not appear until approved.)
© 2018 Joe Rinehart
BlogCFC was created by Raymond Camden. This blog is running version