|
Key concepts in this chapter are:
Understanding various forms of attacks that can threaten Microsoft Visual Basic .NET applications
Preventing denial of service (DoS) attacks
Preventing directory-based or file-based attacks
Preventing SQL injection and cross-site scripting attacks
Executing child applications safely when using shell statements
Before you can start writing hack-resistant code or fortifying existing code against attack, you must first understand the types of attacks you are defending your code against. This chapter enumerates the attacks your Visual Basic .NET code is most vulnerable to. For each form of attack, techniques for avoiding the attack are presented.
Generally, attacks on shared networks or Internet systems and applications are launched at two different levels: system and application. This chapter focuses on application-level attacks, and more specifically on areas where Visual Basic .NET applications are vulnerable to attack. Chapter 11 and Chapter 12 provide techniques for defending your systems and databases against system-level attacks.
|