Security School

Quiz: Secure Web directories and development, answer No. 3

The correct answer is: False
The value of a hidden form field can be easily read by anyone viewing the page source. An attacker can look through Web pages stored in a computer's cache and use or change the value in order to try to fraudulently access other information. The correct way to handle sensitive information is by using session variables or a temporary database record.

<< Back to quiz


This was first published in June 2005

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: