Skip to content

Slides and checklist for my talk at Pycon Estonia 2020

Notifications You must be signed in to change notification settings

aalekseev/10-steps-talk

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Slides and checklist for Pycon Estonia 2020 talk "10 Steps For More Secure Web Applications"

10 Steps

  1. Make security checks a reccuring activity
  2. Use secure connection
  3. Configure software with security in mind
  4. Don't commit secrets to the repository
  5. Check application dependencies
  6. Make it harder for attackers to guess about your application
  7. Research and use the tools that already available
  8. Use automatic tools to check your application
  9. Don't trust user input and sanitize it
  10. Protect user data by requesting only what necessary
  11. Disallow everything, and granually add permissions as they are required