A few fairly simple practices would have prevented my successful attack on eWeek's OpenHack site. The bottom line is that application security can be attained, but it must be consistently applied and methodically checked to be effective. Rather than focusing . . .
A few fairly simple practices would have prevented my successful attack on eWeek's OpenHack site. The bottom line is that application security can be attained, but it must be consistently applied and methodically checked to be effective. Rather than focusing on one of the five OpenHack challenges presented by eWeek, I decided to try to find any security problems I could.

My attempt to hack the site began by making a quick pass through the Microsoft Corp. and Oracle Corp. versions of the OpenHack application, both to get an idea of their scope and an overview of their architecture. The first decision I made was to determine which application would be more vulnerable.

The link for this article located at eWeek is no longer available.