Thank you for choosing my book. I have much to tell you, and I'd like to share my experience with you. In my opinion, the information in this book will be interesting both for novice Web programmers and for experts. You haven't read the book yet, so I'd like to tell you a little about it.
As you might have guessed, the key issues of the book are protection of and attack on a Web application.
You will probably agree that coverage of the security of Web applications should involve a detailed analysis of an attacker's actions. Without knowledge of the attacker's methods , your application will be unprotected .
This book doesn't encourage you to attack; it teaches you how to repel attacks. My goal is to help you look at Web application security from both the attacker's and the defender's point of view.
To protect your system well, you need to know your enemy. This is why each problem is described in this book from two sides: the attacker's and the defender's.
Note Chapter 8 describing a conceptual virus. Creation of this virus doesn't entail any consequences because it cannot be reproduced. It is a purely theoretical issue. I insist that you don't treat it as a malicious program but study it to learn useful information about Web security.
Thank you for your interest to my book.