Project: Security Review / Repair Sites ID: 1210665519

Status:	Closed (Cancelled)
Budget:	N/A
Created:	5/13/2008 at 3:58 EST
Cancelled:	6/6/2008 at 0:26 EST
Project Creator:	gotham Rating: (8 reviews)
Description:	We are undergoing a review of our web security, and we are looking at getting someone to review all our websites and our hosting to check for any script vulnerabilities, and any script flaws that may allow people unwanted access to our sites. Please bid including your estimated time for any script updates and programming fixes that you may have to do as part of this review. Also, anything that you can suggest for increased security / protection would be welcomed. We have several sites, and they are coded in different formats, so you would need to know a bit about ASP and PHP along with the normal security issues for the web. Additional Info (Added 5/13/2008 at 19:24 EST)... All our sites are hosted through ixwebhosting, and we have 5 sites that will need to be looked at. one of which is simply HTML and one is PHP, along with three more which are asp coded.
Job Type:	PHP XHTML MySQL Security System Administration

Messages Posted: 7

Programmers	Bid	Delivery Within	Time of Bid	Rating
jurre	$120	3 days	5/14/2008 at 13:38 EST	(No Feedback Yet)
I can audit the php/asp system for: rfi/lfi/xss/xsrf/sql injection (mmsql, mysql, oracle) and if safe coding is included(no cookie hijacking, safe sessions, safe cookies.) I can fix the php scripts and discuss what the matters where. However i don't have any experience with ASP. I have more then two years of experience with auditing webapplications and servers.
sokcevic	$150	3 days	5/14/2008 at 5:01 EST	(No Feedback Yet)
I'll check installed scripts on server (shells, backdoor), test SQL, XSS injection, check structure of login script (does have password salt, cookies) and fix it. Unfortunately, I do not know ASP, but I have 5 years experience in PHP/MySQL and 1.5 year in security. So, I can fix PHP scripts and tell what is wrong with ASP.