An anonymous reader sends us to a technical white paper written by the Honeynet Project & Research Alliance: Know Your Enemy: Web Application Threats. Based on analysis of malware collected by the project, the paper outlines a number of HTTP-based attacks against web applications and some ways of protecting Web servers. Included are code injection, remote code-inclusion, SQL injection, cross-site scripting, and exploitation of the PHPShell application.
Riches: A gift from Heaven signifying, "This is my beloved son, in whom I
am well pleased."
-- John D. Rockefeller, (slander by Ambrose Bierce)