Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

86% of PHP-based apps contain at least one XSS vulnerability

  • 04-12-2015 4:25pm
    #1
    dbit
    Closed Accounts Posts: 1,322 ✭✭✭


    Does anyone out there use or employ virtual patching , Does anyone disagree with the principles as an aswer to these types of mass vulns . Teams i can understand can be delayed in getting to most of the edge or DMZ nested systems , but based on what they are and what they do should industry not be pushed to have virt patching forced via PCI DSS ? Im thinking it a handy way to delay the update pushes and to have a virtual hammer drop for detected attcks ?, until they can get to those systems ?

    http://www.net-security.org/secworld.php?id=19189


Comments

  • #2
    syklops
    Closed Accounts Posts: 18,966 ✭✭✭✭syklops


    dbit wrote: »
    Does anyone out there use or employ virtual patching , Does anyone disagree with the principles as an aswer to these types of mass vulns . Teams i can understand can be delayed in getting to most of the edge or DMZ nested systems , but based on what they are and what they do should industry not be pushed to have virt patching forced via PCI DSS ? Im thinking it a handy way to delay the update pushes and to have a virtual hammer drop for detected attcks ?, until they can get to those systems ?

    http://www.net-security.org/secworld.php?id=19189

    I use and employ WAFs if thats any help?


  • #3
    dbit
    Closed Accounts Posts: 1,322 ✭✭✭dbit


    WAFS are they actually capable of scanning an OS and its subset of applications and thus bring down a vale of virtual patching inline shrowded over all the instances found within and stop exploits against vulnerable applcaitions ? And im not just talking about the web apps them selves , I mean every peice of software in each instance ?


Advertisement