|
|
Automated detection of vulnerabilities in web applications
Tomori, Rudolf ; Parízek, Pavel (advisor) ; Babka, Vlastimil (referee)
Security vulnerabilities, while being an important and common problem of web applications, are often easily detectable by using specialised software. The WebCop tool developed in this thesis is able to spot some of the common web application security vulnerabilities. Its main advantage over other similar software lies in its ability to configure the way in which the individual tests are performed, also allowing the user to specify the conditions that are required to be met in order to acknoledge the presence of the given security vulnerability. The tool is developed for the Unix/Linux platform using the C++ language.
|
|
|
Resource limiting and accounting facility for FreeBSD
Tomori, Rudolf ; Děcký, Martin (advisor) ; Bulej, Lubomír (referee)
This thesis analyses the implementation of the Linux cgroups subsystems responsible for limiting CPU time and disk I/O throughput. Apart from the Linux cgroups approach, an overview and short analysis of other possible approaches to the problem of limiting CPU time and disk I/O throughput is presented. Based on the analysis, the thesis proposes an extension to the resource limit- ing and accounting framework racct/rctl in the FreeBSD kernel. Our prototype implementation of this extension provides features that enable the administrators and privileged users to define disk I/O throughput limits and relative CPU time limits for a particular process, user or FreeBSD jail.
|
|
|
Resource limiting and accounting facility for FreeBSD
Tomori, Rudolf ; Děcký, Martin (advisor) ; Bulej, Lubomír (referee)
This thesis analyses the implementation of the Linux cgroups subsystems responsible for limiting CPU time and disk I/O throughput. Apart from the Linux cgroups approach, an overview and short analysis of other possible approaches to the problem of limiting CPU time and disk I/O throughput is presented. Based on the analysis, the thesis proposes an extension to the resource limit- ing and accounting framework racct/rctl in the FreeBSD kernel. Our prototype implementation of this extension provides features that enable the administrators and privileged users to define disk I/O throughput limits and relative CPU time limits for a particular process, user or FreeBSD jail.
|
|
|
Automated detection of vulnerabilities in web applications
Tomori, Rudolf ; Babka, Vlastimil (referee) ; Parízek, Pavel (advisor)
Security vulnerabilities, while being an important and common problem of web applications, are often easily detectable by using specialised software. The WebCop tool developed in this thesis is able to spot some of the common web application security vulnerabilities. Its main advantage over other similar software lies in its ability to configure the way in which the individual tests are performed, also allowing the user to specify the conditions that are required to be met in order to acknoledge the presence of the given security vulnerability. The tool is developed for the Unix/Linux platform using the C++ language.
|
guest ::
