Are Secure Internet Transactions Really Secure?
This paper describes how many small business claim to be offering a secure order form, when in fact, they really are not. The paper shows how the insecurity occurs, and offers a fe…
Cgisecurity.com
This site is designed to help user to learn about what kinds of security risks exist and how to prevent them from happening.
CIAC: Unix NCSA httpd Vulnerability
An advisory detailing a vulnerability that has been discovered in the NCSA WWW server software (httpd).
Microsoft TechNet Security - Web Site Security
Provides technical how to information and links to other security resources.
Phrack: Against the System - Rise of the Robots
Michal Zalewski theorizes how Web crawlers can be exploited to inadvertently attack remote systems.
The Open Web Application Security Project
How to build, design and test the security of web appplications and web services
The WWW Security FAQ
Includes securing your server, protecting confidential documents on your site, safe CGI programming, client security, and privacy.
W3C Security Resources
Provides an overview of web security and links to security initiatives such as PICS Signed Labels, and XML-DSig.
World Wide Web (in)Security
Demonstrations of security risks and advice for safe use of a web browser.