A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Web Security for Dummies - Lee Neely Derbycon 2016 (Hacking Illustrated Series InfoSec Tutorial Videos)

Web Security for Dummies
Lee Neely
Derbycon 2016

Today's web surfing experience is more riddled with landmines than ever, which results in compromises of end-user systems by the use of perpetually insecure browsers, plugins, and sometimes just bad user behavior. A few changes to approaching how you surf the web can raise the bar on the risks to compromise, such as using TOR, removing Flash and Java, and more. Additionally, many of us run or validate the security of web servers. There are a few things web server owners can do that also aid users with a secure browsing experience. More and more users are looking for these same security enhancements, and such as the ISRG Lets Encrypt project's free SSL/TLS certificates. This discussion will give you a short list of changes to better secure the web surfing experience both for users and customers. After completing this session, participants will be able to: 1) Learn some optimal browser configuration options 2) Learn some browser best practices 3) Learn some web server configuration best practices 4) Learn about The Onion Network (TOR) 5) Learn about free HTTPS certificates for Web Servers.

Lee Neely is a regular presenter at the ISACA LA and Silicon Valley Chapter Spring Conferences, SANS Mentor Instructor, Presenter at the NNSA National Laboratories Information Technology conference. Lee also blogs for the SANS Pen-Test curriculum, and writes SANS Security Analyst white-papers. As a Senior Cyber Analyst at Lawrence Livermore National Laboratory, he teaches cyber security courses, including the new manager cyber security training, and Information System Security Officer training. Lee has a Bachelors in Computer Science from Cal State Hayward and holds several security certifications including GMOB, GPEN, CISSP, CISA, CISM and CRISC. He is also the Technology Director for the ISC2 EastBay Chapter.

@lelandneely

Back to Derbycon 2016 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2016, IronGeek
Louisville / Kentuckiana Information Security Enthusiast