Wrapping Up

Not all data is created equal, and in this chapter we covered how to protect the most important pieces of data. Your customers would not like their information to fall into the attackers’ hands. You learned why you have to protect against XSS attacks, disable caching, use SSL, not log sensitive data, limit how you share server files, and encrypt sensitive pieces of information.

You have data security down. Let’s move on to how you can systematically harden your existing code and build applications faster with third-party modules without compromising your overall security.

Footnotes

[82]

http://nginx.org, http://www.lighttpd.net, and https://h2o.examp1e.net/index.html.

Copyright © 2016, The Pragmatic Bookshelf.

Get Secure Your Node.js Web Application now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial