OWASP

I have been reading about the OWASP Top 10. Apparently they are a list of common web security breaches. There seems to be a new list each year. Figure I had better know what they are, to lock down my site and maybe open up others.

OWASP stands for the Open Web Application Security Project. They are a non-profit. They focus on software security. But back to the Top 10. Last year they focused on things like SQL injection (or general injection). Of course cross site scripting was up there. So was miconfigured security.

Good stuff. I wonder what will be on the list for 2014?