Difference between revisions of "Security Testing"
From CitconWiki
Jump to navigationJump to search|  (Add quote from Peter) | |||
| Line 8: | Line 8: | ||
| Game security: need to protect against lots of different kinds of attacks. Malformed packets that crash the servers, aim bots, changing asset attributes, and more. Training, code reviews, hack days where developers target each other's code | Game security: need to protect against lots of different kinds of attacks. Malformed packets that crash the servers, aim bots, changing asset attributes, and more. Training, code reviews, hack days where developers target each other's code | ||
| + | |||
| + | "We try not to write any security code ourselves. We assume there are pros and we are clueless." | ||
Latest revision as of 06:43, 20 September 2014
Scanning tools: Nessus: http://www.tenable.com/products/nessus
External penetration testing
QA team also responsible for security, testing every field for injection attacks
Test team using tools to test the infrastructure
Game security: need to protect against lots of different kinds of attacks. Malformed packets that crash the servers, aim bots, changing asset attributes, and more. Training, code reviews, hack days where developers target each other's code
"We try not to write any security code ourselves. We assume there are pros and we are clueless."
