Improving Web Application Security: Threats and Countermeasures
| Check | Description |
|---|---|
|
| IPSec is used for machine-level access control. |
|
| File authorization is enabled for user access control. |
|
| Users are authorized with principal-based role checks. |
|
| Where appropriate, access to remote resources is restricted by setting rejectRemoteRequest attribute to "true". |
Категории