Please watch Percona’s Information Security Architect, David Bubsy, as he presents his talk “Web Application Security - Why You Should Review Yours”.
In this talk, we take a look at the whole stack and I don't just mean LAMP.
In this talk, we take a look at the whole stack and I don't just mean LAMP.
- We'll cover what an attack surface is and some areas you may look to in order to ensure that you can reduce it.
- What's an attack surface?
- Acronym Hell, what do they mean?
- Vulnerability Naming, is this media naming stupidity or driving the message home?
- Detection, Prevention and avoiding the boy who cried wolf.
- Emerging technologies to keep an eye on or even implement yourself to help improve your security posture.
- A live compromise demo (or backup video if something fails) which covers compromising a PCI compliant network structure to reach the database system and ultimately exploit multiple failures to gain bash shell access over the MySQL protocol.
