Stop Exposing Yourself: Exploits, Attacks and Defenses

Geoffrey Tran

Friday 29 June 2012 from 16:00 to 18:32

Talk in English - US at Lone Star PHP Conference
View Slides: https://speakerdeck.com/u/geoff/p/stop-exposing-yourself-exploits-attacks-and-defenses
Short URL: https://joind.in/talk/91a59 (QR-Code (opens in new window))

Avg. Rating

Stop Exposing Yourself: Exploits, Attacks and Defenses

Comments

Comments are closed.

Jason A Myers at 16:26 on 29 Jun 2012

This presentation was great. The information was clearly presented, and the examples were very relevant. His live demos were smooth and well planned. Very professional and confident speaker.

Chase Peeler at 19:33 on 29 Jun 2012

Brought up some topics I had never thought about before, as well as new areas related to topics I did know about. Using "Exploits of a Mom," one of my favorite xkcd strips, was an added bonus!

Ben Lake at 19:57 on 29 Jun 2012

Very good overview of common security issues in web applications. This sort of talk should be repeated at every conference. Thanks!

Anonymous at 08:52 on 30 Jun 2012

Good overview with concrete code examples that you don't often get.

Jason Ragsdale at 09:16 on 30 Jun 2012

Solid information, thanks

Allan Chappell at 10:51 on 30 Jun 2012

The talk had great content, and great suggestions, but Geoffrey is very soft spoken and requires everyone to be absolutly quiet to hear him. On that same note, his voice is very monotone, making the talk to seem devoid of excitement or anything that will draw people in besides the content itself. Aside from the occasional funny picture or quote, the presentation was really dry.

Due to the quality of the content I would call this an average talk.

Omni Adams at 15:23 on 30 Jun 2012

The web is a scary place, and everyone's out to get you.

Josh Justice at 15:25 on 30 Jun 2012

Forget PHP, every web developer needs to listen to this talk.

Alexandra Stormwing at 20:02 on 30 Jun 2012

Not a bad talk (and one that is useful to everyone) but I was hoping for some more in-depth, complex material. The concepts covered were very basic, though it was great to see the revival of Samy as a real-world example.

Samy is my hero!

Sanitize parameters / use prepared statements / XSS / CSRF are always covered in these types of talks; having more focus on other vulnerabilities would have been great.

Henning Glatter-Götz at 14:08 on 1 Jul 2012

Good overview with practical examples. The depth was just right for my experience level and reminded me that I have lots to look into.

Joseph Thayne at 09:30 on 2 Jul 2012

Very good overview. I enjoyed the real-world examples as well as the simple solutions.

Jordan Kasper at 10:47 on 2 Jul 2012

Perhaps I'm just ahead of the game, but these were all things I was very well aware of already. It was still good to reinforce that I need to be diligent in my escaping and input filtering, but how about some examples of current attacks, and any new methods for dealing with those?

I also agree that Geoff needs to work on his presentation skills a bit - get into it! And speak up a bit. ;)

Evan Kaufman at 16:48 on 5 Jul 2012

The information in this talk was all very basic web security, so it was too elementary for myself. Still a lot of good information for beginning web developers, presented in a useful format!

Geoffrey was very soft spoken and didn't speak directly into the mic, so it was difficult to hear most of what he was saying.