• Cloud Hosting Servers as low as $175

    Hostirian cloud services are supported by multiple state of the art servers. Each server/node has been built with the best of today’s hardware, featuring 72GB of high speed RAM and Dual Intel X5650 Hexacore processors. We always maintain an N+1 Architecture so that your Virtual server will be online 100% of the time and HA/Self Healing technology is standard on all [...]
  • VPS Servers Starting at $4.95

    Virtual Private Server (VPS) Solutions – Step UP from shared hosting platforms to VPS, with just the right mix of memory and processing power to host everything from stand-alone services to ecommerce & complex web applications. Virtual Private Servers offer – an extraordinary range of control and flexibility, coupled by prices that won’t break the bank, all backed by a [...]
  • Dedicated Servers as low as $99.00

    Enterprise Dedicated Server Solutions - Finally, dedicated server solutions that won’t break the bank, backed by a full BGP network with multiple upstream providers and diverse fiber paths. Featuring a 100% uptime guarantee & Forever support – at pricing levels UNMATCHED in the industry. Hostirian’s data centers are staffed with on-site engineers who are empowered to provide long-term value. Our Forever support EXCEEDS [...]
  • Full Server Rack as low as $695

    Discover Hostirian’s world-class colocation solutions – Featuring a 100% uptime guarantee & Forever support at pricing levels unmatched in the industry. Finally, scalable solutions from 1U to Full Private Cages backed by a full BGP network with multiple upstream providers and diverse fiber paths. Hostirian’s data centers are staffed with on-site engineers who are empowered to provide long-term value. Our Forever support [...]
  • World Class Hosting as low as $9.99

    Plesk Shared Hosting cPanel Shared Hosting Windows Plesk Hosting Available ASP, PHP, and MySQL Front Page Accessible Webmail Access As Low as $9.99 a month More Info Order Now! Linux cPanel Hosting Available Free Basic Website Editor Front Page Accessible Webmail Access As Low as $9.99 a month More Info Order Now! Our new website hosting packages – are designed [...]

Are your applications secure?


Updated April 1 2011 – This is still HIGHLY relevant. See this story.

December 2009 – I just read an article this afternoon about the fastest growing security threat in the hosting industry. Apparently this threat has grown over a hundred fold in just the last year alone. What is it?

SQL Injection

Why have SQL injection attempts grown so dramatically? It was pointed out, and I agree, because the bad guys are using (very sophisticated) automated tools. More and more, we’re seeing attempts not only to be disruptive, rather to be focused on identity theft. Anyone remember Heartland Payment Systems and TJX?

Who is Susceptible?

Certainly, if you’re processing lots of credit cards, you need to guard against SQL injection, but even if you aren’t, this exploit needs to be addressed. I did a quick Google search for SQL injection prevention and stumbled upon an SQL Injection Cheat Sheet at http://www.owasp.org/index.php/SQL_Injection_Prevention_Cheat_Sheet. Since most SQL injection exploits are due to lax coding and poor application design practices, prevention measures like those outlined on this site can significantly minimize your risk of being compromised.

From Owasp.org

“SQL Injection flaws are introduced when software developers create dynamic database queries that include user supplied input. To avoid SQL injection flaws is simple. Developers need to either:
a) stop writing dynamic queries; and/or
b) prevent user supplied input which contains malicious SQL from affecting the logic of the executed query.”



WDTalk

Popularity: unranked