See also:

• Computers: Internet: Proxying and Filtering: Content Filtering: Advertising  (26)
• Computers: Internet: Web Design and Development: Hosting  (2,192)
• Computers: Internet: WWW  (1)
• Computers: Security: Internet: Privacy  (182)
• Computers: Software: Shareware: Windows: Security: Parental Control  (39)

Are Secure Internet Transactions Really Secure?  www.jsweb.net/paper.htm This paper describes how many small business claim to be offering a secure order form, when in fact, they really are not. The paper shows how the insecurity occurs, and offers a few solutions to the problem.

Cgisecurity.com  www.cgisecurity.com This site is designed to help user to learn about what kinds of security risks exist and how to prevent them from happening.

CIAC: Unix NCSA httpd Vulnerability  www.ciac.org/ciac/bulletins/f-11.shtml An advisory detailing a vulnerability that has been discovered in the NCSA WWW server software (httpd).

Client Side Trojan  www.zope.org/Members/jim/ZopeSecurity/ClientSideTrojan By clicking on maliciously formed HTML tags users can unknowingly perform undesirable actions.

COAST Hotlist: Security in the WWW  www.cerias.purdue.edu/tools_and_resources/hotlist A collection of links related to WWW security.

Hacking Exposed: Web Applications  www.webhackingexposed.com Book that covers how to hack web applications, and how to secure against the attacks detailed. Author profiles, links to tools referenced in the book and reviews.

Northfell  www.northfell.com Article on website hacking covering footprinting, IP scanning and an example IIS hack. Also has computer security weblog and an overview of BS7799.

The Open Web Application Security Project  www.owasp.org How to build, design and test the security of web applications and web services.

Total Simplicity  www.totalsimplicity.com Total Simplicity is a full on technical company providing hosting, custom programming, security, and online stores.

W3C Security Resources  www.w3.org/Security Provides an overview of web security and links to security initiatives such as PICS Signed Labels, and XML-DSig.

Web Security: A Matter of Trust  www.w3j.com/7 Collection of original articles.

Web Spoofing  www.cs.princeton.edu/sip/WebSpoofing Full text of a paper discussing an 'attack' that threatens both privacy and data integrity. Written by Edward W. Felten, Dirk Balfanz, Drew Dean, and Dan S. Wallach. Available in various formats including PDF and Postscript.

World Wide Web (in)Security  www.swcp.com/~mccurley/danger/danger.html Demonstrations of security risks and advice for safe use of a web browser.

W3Schools.com: Web Security  www.w3schools.com/site/site_security.asp Covers basic privacy issues.

The WWW Security FAQ  www.w3.org/Security/Faq Includes securing your server, protecting confidential documents on your site, safe CGI programming, client security, and privacy.