Tag: security

What should every programmer know about security?

What should every programmer know about security? – Stack Overflow. Security is one of those topics you can’t possibly escape if you write any sort of code. It’s also one of those things that’s really difficult to study until you get bit at some point along the way and really learn your lesson. Being proactive […]

Posted: May 08, 2012

Semi-Protected Download URLs in WordPress via Transients, Cookies, and Pods

I continue to further utilize WordPress as a project framework with every project. I recently implemented a walled garden of content that contained a downloads section that got me thinking about how I could up the ante a bit and make those downloads semi-protected without becoming too invasive.

Posted: April 16, 2012

SQL Injection through HTTP Headers

 InfoSec Institute – IT Training and Information Security Resources – SQL Injection through HTTP Headers. Security is an important consideration to be made if you write any sort of server-side code in any capacity. Leaving clients exposed does a disservice to everyone involved, and to do the best job you can in protecting the systems […]

Posted: April 04, 2012

Public Key Security Vulnerability and Mitigation

Public Key Security Vulnerability and Mitigation. GitHub had quite an interesting experience over the weekend, and it’s worth examining for a number of reasons. First and foremost a security issue was exposed that affected an extremely large number of systems and users. I’m not a Rails developer but from what I understand, the security issue […]

Posted: March 05, 2012

Google offers $1 million reward to hackers who exploit Chrome

Google offers $1 million reward to hackers who exploit Chrome. It’s just occurring to me now that contests like these are just like the design contests that consistently get lambasted each and every time they crop up. I likely don’t hear any recoil about these browser security contests because I’m not in that community, but […]

Posted: February 28, 2012

WordPress 3 Ultimate Security Book Review

I recently read WordPress 3 Ultimate Security by Olly Connelly and I’m impressed. At nearly 400 pages, the book is overflowing with lots of information on an unwieldy subject that (rightly) keeps some people away from unmanaged hosting. If you’re interested in keeping your WordPress sites as secure as possible, this book might be for you.

Posted: January 30, 2012

I Saw An Extremely Subtle Bug Today…

I Saw An Extremely Subtle Bug Today And I Just Have To Tell Someone | Kalzumeus Software. I don’t know about you but I love a good bug-hunting story. This is the best one I’ve read in some time. The author goes into extreme detail to ensure we’ve got enough context to problem solve with him […]

Posted: November 18, 2011

Google+ Gets a “+1” for Browser Security

Google+ Gets a “+1” for Browser Security | The Barracuda Labs Internet Security Blog. A neat look at what Google+ is doing to keep itself secure, and even takes a comparative look at what Facebook is(n’t) doing.

Posted: August 22, 2011

SQL injection with raw MD5 hashes

SQL injection with raw MD5 hashes (Leet More CTF 2010 injection 300) – cvk | nc -l -p 80. Hacking like this is fascinating to me. If you work at all on the server side, it’s your responsibility to be up-to-date with exploits in the code you write. Over the years, it’s become obvious that […]

Posted: November 29, 2010