Hey bro. Backtrack, and tell John this. It’s a quick solve of the quote thing, also prevents a link or img-inject hack.
The FedGov didn’t put me through Defensive Programming and Threat Modeling courses for nuttin’. :)
Buckeye. Tell ‘im. :)
On the topic of security, make sure to encrypt between the app and the db, especially for private information.
One penetrate through the firewall, and yer done.
Target had state of art firewalls, hard and soft.
They installed smart HVAC machines. The developers didn’t lock the HVAC machines down right. The hackers got behind the firewall with those machines, then sniffed the traffic — the unencrypted DB to App traffic! 9 million credit cards later, the problem was discovered.
Nude Threat Modeling or just fashion runway stuff?