Node.js and server security issues

Question

Node.js and server security issues

Since node.js is based on javascript, and since javascript is a very dynamic language, does that not mean that server-side code injection is even more dangerous than java or asp.net?

+3

java security node.js asp.net

user310291 May 01 '12 at 15:20

source share

2 answers

Nick Long · Answer 1 · 2012-05-01T15:33:07+0000

Any language that allows you to easily evaluate a string as a line of code carries security risks. In this regard, NodeJS is no worse than anything written in Javascript or PHP.

Even if you write your code in Java or ASP, a naive web programmer may still suffer from SQL injection injections if they are not careful, and pasting code is only one way that an application can be compromised.

, , eval .

250R · Answer 2 · 2012-05-01T22:28:05+0000

, .

node.js , , node -validator https://github.com/chriso/node-validator

Node.js and server security issues

More articles: