{"guid":"334dfae8-ad63-525b-8a85-e23deb1bd37e","title":"Minimal effort web application security (a.k.a. how to make my job harder)","subtitle":null,"slug":"emf2014-160-minimal-effort-web-application-security-a-k-a-how-to-make-my-job","link":"https://c3voc.de","description":"In this talk I will present a few quick tips on making your web applications more resistant to common attack vectors, without putting a lot of effort in. In some cases, simply adding a line to a configuration file can completely prevent entire classes of attack from being viable. We'll take a look at hardening against XSS, SQL injection, clickjacking, password cracking, and a few other bits if there's time. With any luck, you'll make my job a bit more difficult.","original_language":"eng","persons":["Graham Sutherland"],"tags":["emf2014","160","2014"],"view_count":16,"promoted":false,"date":"2014-08-31T12:00:00.000+02:00","release_date":"2024-08-27T00:00:00.000+02:00","updated_at":"2025-11-04T09:00:06.182+01:00","length":1809,"duration":1809,"thumb_url":"https://static.media.ccc.de/media/events/emf/2014/160-334dfae8-ad63-525b-8a85-e23deb1bd37e.jpg","poster_url":"https://static.media.ccc.de/media/events/emf/2014/160-334dfae8-ad63-525b-8a85-e23deb1bd37e_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/emf/2014/160-334dfae8-ad63-525b-8a85-e23deb1bd37e.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/emf/2014/160-334dfae8-ad63-525b-8a85-e23deb1bd37e.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/emf2014-160-minimal-effort-web-application-security-a-k-a-how-to-make-my-job","url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_title":"Electromagnetic Field 2014","conference_url":"https://api.media.ccc.de/public/conferences/emf2014","related":[],"recordings":[{"size":68,"length":1809,"mime_type":"video/webm","language":"eng","filename":"emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2024-08-27T04:54:56.395+02:00","recording_url":"https://cdn.media.ccc.de/events/emf/2014/webm-sd/emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/79304","event_url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_url":"https://api.media.ccc.de/public/conferences/emf2014"},{"size":95,"length":1809,"mime_type":"video/webm","language":"eng","filename":"emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":854,"height":480,"updated_at":"2024-08-27T04:39:12.942+02:00","recording_url":"https://cdn.media.ccc.de/events/emf/2014/webm-hd/emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/79292","event_url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_url":"https://api.media.ccc.de/public/conferences/emf2014"},{"size":27,"length":1809,"mime_type":"audio/mpeg","language":"eng","filename":"emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2024-08-27T04:38:03.206+02:00","recording_url":"https://cdn.media.ccc.de/events/emf/2014/mp3/emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/79291","event_url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_url":"https://api.media.ccc.de/public/conferences/emf2014"},{"size":59,"length":1809,"mime_type":"video/mp4","language":"eng","filename":"emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2024-08-27T04:37:45.573+02:00","recording_url":"https://cdn.media.ccc.de/events/emf/2014/h264-sd/emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_sd.mp4","url":"https://api.media.ccc.de/public/recordings/79290","event_url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_url":"https://api.media.ccc.de/public/conferences/emf2014"},{"size":19,"length":1809,"mime_type":"audio/opus","language":"eng","filename":"emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2024-08-27T04:36:55.525+02:00","recording_url":"https://cdn.media.ccc.de/events/emf/2014/opus/emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_opus.opus","url":"https://api.media.ccc.de/public/recordings/79289","event_url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_url":"https://api.media.ccc.de/public/conferences/emf2014"},{"size":70,"length":1809,"mime_type":"video/mp4","language":"eng","filename":"emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":854,"height":480,"updated_at":"2024-08-27T04:25:31.870+02:00","recording_url":"https://cdn.media.ccc.de/events/emf/2014/h264-hd/emf2014-160-eng-Minimal_effort_web_application_security_aka_how_to_make_my_job_harder_hd.mp4","url":"https://api.media.ccc.de/public/recordings/79282","event_url":"https://api.media.ccc.de/public/events/334dfae8-ad63-525b-8a85-e23deb1bd37e","conference_url":"https://api.media.ccc.de/public/conferences/emf2014"}]}