Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
Ivan Zhuravlev2012-12-30 23:30:12
Information Security
Ivan Zhuravlev, 2012-12-30 23:30:12

Who is responsible for the security of the Internet project and what actions are taken in response to these incidents?

Even if you have a small online store and 2 people work in it, I'm still interested to know your opinion too, maybe it will complement the overall picture.

Let's take a dozen cases in which a strict sequence of actions is observed, regardless of the scale of the project:
1. There is an Internet project on which a serious security problem was accidentally discovered, well, for greater passion, let's say with personal data of users, including financial.
2. Naturally, as normal people without selfish goals, we send a message to the contact email about the error.
3. In the example under consideration, we receive feedback in 100% of cases (in reality this is not the case), in which they thank for the help and undertake to fix everything.
Conclusion: after a few months, the error has not been fixed.

What really happens in such cases? Have you had similar cases? If so, what exactly slows down the process, what are the objective reasons?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
E
elgordo, 2012-12-30
@elgordo

The process is slowed down, I think, by the technical illiteracy of the IT service. For example, there is a forum that I often visit. There, for half a year now, there has been a problem with the spread of viruses to mobile devices by modifying htaccess, when mobile clients, based on the User-Agent, are redirected to the URL with the virus.
The forum has nothing to do with IT, so I, as well as a couple of other IT people, who by coincidence turned out to be regular visitors to this forum, gave advice to the administrator several times on how to fix the situation. However, nothing changes. He cleans htaccess, and after a week or two everything returns. That is, a web shell is sitting somewhere, and the admin does not know / does not understand how to find it and how to configure the system so that it does not get there again.
We cannot understand how this is possible, but can you?

Similar questions
S
Sergey2013-04-25 15:52:12
Information security podcasts 2Reply
M
metallix2020-06-18 12:56:02
Puzzle sites? 2Reply
T
TSLA2020-06-18 20:58:54
How to securely open remote access to the camera? 2Reply
M
MarianaSE2018-06-09 03:50:15
How to safely use pirated software? 5Reply
P
Pavel2013-05-28 09:03:12
Placement of corporate CRM and company website on one dedicated server. Risks? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question