Flash exploit served by Microsoft
Microsoft site (msn.no) serves trojan to thousands of users due to known Flash Player bug.
0 commentsSave Tags: flash-flex, microsoft, security, windows
Zero to Production in 15 Minutes
There still seems to be confusion about the relative simplicity or difficulty of deploying a Rails app using JRuby. Many folks still look around for... more »
0 commentsSave Tags: frameworks, java, ruby, security
300+ PHP Presentations Online
The PHP Presentation System hosts over three hundred presentations, covering a slew of different topics including performance, testing, debugging,... more »
0 commentsSave Tags: php, security, web services, xml
Data filtering using PHP's filter functions
aphpguy 
via devolio.com
Using PHP's filter_* functions, we can validate and sanitize data types, URLs, e-mail addresses, IP addresses, strip bad characters, and more, all... more »
0 commentsSave Tags: how-to, php, security
Administrators: Force Secure Passwords Because Users are Lazy
The story of how a stolen laptop and a careless employee got me banned from my favorite pawn shop.
0 commentsSave Tags: opinion, security, server
Best unobtrusive anti-spam technique (Not CAPTCHA)
By far one of the best techniques when fighting spam, specially because it doesn't require any special attention from the user!
3 commentsSave Tags: css-html, security, usability, web design
Restrict SSH to Run A Specific Command
bloid via chihungchan.blogspot.com
You may know that if you were to include your ssh public key in the remote host's authorized_keys file, you can ssh/scp into that remote machine... more »
0 commentsSave Tags: security, tools, unix-linux
My Website's SQL Database was Hacked
I received an email from my website manager indicating several errors across different pages. I hate days that start with issues like that, I first... more »
0 commentsSave Tags: database, reviews, security
Tutorial: Cracking WEP Using Backtrack 3
This article will explan how to crack 64bit and 128bit WEP on many WIFI access points and routers using Backtrack, a live linux distribution. Your... more »
0 commentsSave Tags: how-to, security, unix-linux
6 Deadly AJAX Drawbacks: Are you aware?
Some developers view AJAX as the silver bullet for every scenario. However, AJAX introduces its own set of hazards in various areas, which include:... more »
4 commentsSave Tags: ajax, javascript, security, xml
SOA Security 101: Patching the Firewall Hole
Service-oriented architectures have opened and connected “black box” software implementations across enterprises, resulting in a new set of... more »
1 commentsSave Tags: java, security, web services
Password authentication without revealing your password
The majority of personalized web sites use some kind of form-based password authentication where you have two form fields for username and password,... more »
6 commentsSave Tags: how-to, javascript, security
Torvalds: Fed up with 'security circus'
Linus Torvalds, creator of the Linux kernel, says he's fed up with what he sees as a "security circus" surrounding software vulnerabilities and how... more »
2 commentsSave Tags: opinion, security, unix-linux
Where is the Net::SSH bug
Yesterday I spent several hours trying to find the problem with our implementation of OpenSSL Cipher, that caused the Net::SSH gem to fail miserable... more »
0 commentsSave Tags: ruby, security, server, web 2.0
SQL Injection attacks in the wild - why they're working and what to do
Over the past several days, a significant number (in the thousands) of web applications, some of them well-known and well-used, have fallen victim to... more »
0 commentsSave Tags: database, security
Common Security Flaws In PHP Applications
No matter how long you’ve been programming or scripting, once in a while you’ll catch yourself making a serious (security) flaw that you thought you’d... more »
0 commentsSave Tags: how-to, php, security, standards
Web Application Security
How would you determine whether your website is being hacked or not? Read the way hacker steals the information and hacks your website. Moreover, how... more »
0 commentsSave Tags: database, php, security, web services
Java Web Applications Spread Bots and Keyloggers?
In its report, Cybercrime Trends for 2008, Symantec claims, "Java-based Web applications—small programs, such as video players or interactive maps,... more »
0 commentsSave Tags: java, security, usability, web design
Google Releases an Open Source Cryptography Toolkit
Google has just released an open source cryptographic toolkit: Keyczar. The company is aiming to make inherently complex cryptography easier and safer... more »
2 commentsSave Tags: frameworks, java, python, security
Death from the mailroom – iPhone hacks your company from the inside
The Apple iPhone is great for phone calls and viewing YouTube videos, but it can also be turned into one heck of a wireless hacking tool capable of... more »
0 commentsSave Tags: mobile, security
PHP Code: Top Ten Security Vulnerabilities
Below follows the top ten security vulnerabilities that might be hiding in your PHP code.
0 commentsSave Tags: opinion, php, security, web design
Goodbye, Passwords. You Aren’t a Good Defense
bloid via nytimes.com
THE best password is a long, nonsensical string of letters and numbers and punctuation marks, a combination never put together before. Some admirable... more »
1 commentsSave Tags: opinion, security
Game over for Vista?
This week at the Black Hat Security Conference two security researchers will discuss their findings which could completely bring Windows Vista to its... more »
2 commentsSave Tags: security, windows
Custom Authentication Schemes with Grails and JSecurity
bloid via jakusys.de
In my current software project a requirement is an authentication scheme consisting not of the usual user name an password, but user name, password... more »
0 commentsSave Tags: frameworks, groovy, security
Grails security: Tomcat policy files
bloid via rpu-notes.blogspot.com
After some hours i got running our grails application in apache-tomcat 6.0.18 secure mode:
0 commentsSave Tags: frameworks, groovy, security, server
