Securing Ajax Applications

Author: Christopher Wells
Publisher: O'Reilly, 2007
Pages: 256
ISBN: 978-0596529314
Aimed at: Beginners
Rating: 1
Pros: Easy to read introduction to web security
Cons: Completely off topic
Reviewed by: Ian Elliot

This book is about general web security and is not a particularly advanced one. How it came to have the title it has is a mystery - unless Ajax is being used to mean "any web application".

Author: Christopher Wells
Publisher: O'Reilly, 2007
Pages: 256
ISBN: 978-0596529314
Aimed at: Beginners
Rating: 1
Pros: Easy to read introduction to web security
Cons: Completely off topic
Reviewed by: Ian Elliot
Securing Ajax Applications is a fairly specific title and in most programmers' minds will bring thoughts of how to write secure Javascript. If this is indeed what you are looking for then this book is going to be a disappointment. Basically it is a  book about general web security and not a particularly advanced one. How it came to have the title it has is a mystery - unless Ajax is being used to mean "any web application".

 

Even if you treat the book as one on the general topic of web security there can't be many programmers who aren't aware of the standard attack methods. It starts out with a history of the web and HTTP and this part reads like a third hand account. If you were there then you will know the history, much of which isn't relevant to security anyway. Form here we move on to general security and the STRIDE model - spooffing, tampering, redirection, information disclosure, denial of service and elevation of privileges. We have a discussion of SQL injection and buffer overflow attacks and so on, but there is very little code to illustrate the ideas and Ajax seems to be hardly mentioned. I'm not at all sure that the author is a programmer and this is what you really need to deal with the complexities of Ajax security. What we do have is a tutorial on installing Ubuntu and making it secure and just about anything you can think of.

Overall this book is a fairly shallow look at web security that would suit a beginner. As such it has some value. As a book on Ajax security it fails without even trying as there is hardly anything about Ajax in it.

Banner


Node.js in Action

Authors: Mike Cantelon, Marc Harter, TJ Holowaychuk & Nathan Rajlich
Publisher: Manning
Pages: 416
ISBN: 978-1617290572
Audience: Advanced JavaScript programmers
Rating: 4
Reviewer: Ian Elliot

Node.js is just another way that JavaScript seems to be eating the world. Does an "In Action" book expla [ ... ]



Programming the Mobile Web (2nd Ed)

Author: Maximiliano Firtman
Publisher: O'Reilly, 2013
Pages: 774 
ISBN: 978-1449334970
Aimed at: Web developers
Rating: 2
Reviewer: Harry Fairhead

 

Developing for the mobile web - is it really so different that it needs a dedicated, and quite large, book on the subject?


More Reviews

 

Last Updated ( Sunday, 02 May 2010 )
 
 

   
RSS feed of book reviews only
I Programmer Book Reviews
RSS feed of all content
I Programmer Book Reviews
Copyright © 2015 i-programmer.info. All Rights Reserved.
Joomla! is Free Software released under the GNU/GPL License.