How do u test any "web-site" as a secure site...? or How do
you
test the security of a web-site...?
Answers were Sorted based on User's Feedback
Answer / umesh kr
Any web site is a secure website after doing some following
steps:-
IF user is loggen in and now copy tht URL aftr login..
..and then paste it to another tab to tht same browser...If
it ask for doing login again then tht website is perfectly
secure...
If not then tht website is not secured...
Is This Answer Correct ? | 6 Yes | 0 No |
Answer / shankar.majji
1. Valid and invalid log-in.
2. limits defined for the no.of tries.
3. Log file is generated or not.
4. any querries are not acceptable on databases without
authorization.
5. application should be accessible for only valid users.
Is This Answer Correct ? | 6 Yes | 1 No |
Answer / the deep
If the site invloves Credit card transactions we should see
that the SSL is active i.e to use HTTPS for such pages
Is This Answer Correct ? | 1 Yes | 0 No |
Answer / narendra
using
X-SS method
URL injection/SQL injection
Cookies
Is This Answer Correct ? | 2 Yes | 1 No |
Answer / chaitanya
It should allow only the Valid Users. And should not allow
the Unauthorised users. And the sessions should expire
properly.
Is This Answer Correct ? | 1 Yes | 1 No |
It should allow autharised user with valid user name and
password.It should not allowed authorised user invalid user
name and password.It should not allowed unautharised
person.
Is This Answer Correct ? | 1 Yes | 1 No |
Answer / sm
I can able to test this scenario based on the users system
allwoing.Whether system accepting valid users or not
Is This Answer Correct ? | 0 Yes | 1 No |
9. Are there materials you would like to see added to the Web site? Which ones?
what is the architecture of your current project?
Which testing is this- verifying the funtionality of each programme 1. white box testing 2. black box testing 3. glass box testing 4. grey box testing
What is webbased application testing?
What are triggers and procedures?
How to prepare boundary value test cases for 3 input values eg: to get the triangle type i am giving 3 sides a, b, c values should be 1<=a<=200,1<=b<=200,1<=c<=200....
What are the difference between Water fall model and V- Model? Which one is better? Why 80% of Software companies using Water fall model nowadays?
What is the difference between static and dynamic testing?
5.how many deliverables are there in a project development?
Did u come across STUBS and DRIVERS?How did u use these in u r project ?
what is the difference between bug and enhancements..
Once automated, what are the types of functionality provides the highest Return On Investment (ROI) to the company?