ASP.NET Web Site Security Vulnerability Cheat Sheet

ASP.NET Web Site Security Vulnerability Cheat Sheet: 1. To avoid SQL Injection, replace all SQL Commands with parameterized queries or stored procedures (using LINQ to SQL exclusively will also totally eliminate SQL Injection). 2. To avoid packet-sniffing and session hijacking, always use https when sending cookies 3. To avoid Cross-Site Scripting problems, use httpOnly when setting cookies    Here is a summary of the information in the articles... [Read More...]