wood burning stoves 2.0*
The moose likes JSP and the fly likes Hacking the JSP servlet Application Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Java » JSP
Bookmark "Hacking the JSP servlet Application" Watch "Hacking the JSP servlet Application" New topic
Author

Hacking the JSP servlet Application

Pranit Sonawane
Ranch Hand

Joined: Jul 29, 2011
Posts: 149

Hi I'm planning to build a JSP - Servlet Online banking application. All I need to know I mean every single thing for providing the security to the application. like sql injection n all..!! please help me with this.
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 39547
    
  27
Security is a huge field, that we can't begin to cover in a forum post. Start reading here: https://www.coderanch.com/how-to/java/SecurityFaq#web-apps


Ping & DNS - updated with new look and Ping home screen widget
kartik hedau
Greenhorn

Joined: Feb 12, 2013
Posts: 8
try this

http://www.roseindia.net/java/java-security.shtml
J. Kevin Robbins
Ranch Hand

Joined: Dec 16, 2010
Posts: 632
    
    7

Don't waste your time with anything on roseindia.net. You'll just learn bad habits and pick up bad code.

As for the security issue, you're asking for a two year education in a forum post. I don't mean to sound harsh, but without an extensive background in security I can pretty much guarantee that anything you design will be so full of holes that a 12 year old could hack it in less than 30 minutes.


"There is no reason for any individual to have a computer in his home" ~ Ken Olson, Co-founder of DEC, 1977
Marshall Blythe
Greenhorn

Joined: Feb 26, 2013
Posts: 27
As the others here have mentioned, security isn't trivial. It takes time, research, and experience (and patience!) to master. I recommend that you start by taking a look at the reference materials available at the Open Web Application Security Project (OWASP). Here are some examples:

  • OWASP Top 10 2013
  • Developer Guide
  • Cheat Sheets

  •  
    I agree. Here's the link: http://aspose.com/file-tools
     
    subject: Hacking the JSP servlet Application
     
    Similar Threads
    Jsp life cycle
    how to deploy my web application
    JSP/Servlet library for standalone application?
    Does JPG Java Class Exist
    get data from db in jsp page using struts