OWASP Top 10 – A05: Security Misconfiguration (Remediation Perspective)

As I have been working with OWASP Top 10, so far I have studied A01 to A04 and performed remediations according to them on my projects, so I can have an idea of security and standard testing of my web apps. In this article, I would like to tell you about my work regarding A05, which is Security Misconfiguration . t is observed by me that many of the aspects addressed in one OWASP category can also be addressed in more than one category. So this is more about discipline while developing a web app. In my work on OWASP A05, I performed the following remediations and improvements: Note: As some aspects are also addressed in more than one OWASP category, my work is more likely inclined toward one specific category in this article. Environment Configuration One of the aspects that many beginner developers miss out on—and exhibit work-shyness in—is not preparing separate environments for: Development (Project Making) Local (Running on a local closed network) Production (Deploying the project