I know that web2py aims to be secure, but if you use it with amfrpc service that could be interesting to read
http://www.ivizsecurity.com/blog/web-application-security/testing-flash-applications-pen-tester-guide/
- [web2py] Flash security elffikk
- [web2py] Re: Flash security mdipierro
