Problem
1. What are some of the greatest risks businesses face when connecting to the web? Why?
2. Why is it critical to perform periodic web-application vulnerability assessments and penetration tests?
3. Why might connecting your web servers and web applications to the Internet be like opening Pandora's Box?
4. What does the Skipfish application do, and why is it a good security tool for web servers and web application testing?
5. What is tcpdump, and why is it a good tool for testing the Ubuntu Linux web server and web application security?
6. What does the Firefox Live HTTP Headers plug-in application do, and why is this a good tool for web server and web application security testing?
7. What does using the -h switch for tcpdump and skipfish do?
8. What information can you determine from the ifconfig -a command?