PHP Security Zend Webinar
Watch a PHP Security Zend Webinar and get additional PHP security resources
0 commentsSave Tags: how-to, php, security
Security Is a State of Mind
Checking in with expert Bruce Schneier about the state of security.
0 commentsSave Tags: opinion, security
Tutorial: OpenID for Dummies
There's a symptom of those being introduced to microformats and OpenID; They tend to go cross-eyed in confusion. If you're new to OpenID, you might... more »
0 commentsSave Tags: how-to, security, server
Seven habits for writing secure PHP applications
Security in a PHP application includes remote and local security concerns. Discover the habits PHP developers should get into to implement Web... more »
0 commentsSave Tags: how-to, php, security
LDAP basics
LDAP (Lightweight Directory Access Protocol) has a reputation for being complicated, but I hope to dispel that myth and explain exactly how LDAP works... more »
0 commentsSave Tags: frameworks, security
Attention developers: Your SESSIONIDs are showing
Protecting passwords is important, but do you take the same care with your SESSIONIDs? You should. Here's how they work: When you log into a web... more »
4 commentsSave Tags: security, web design
Two interesting things in Gmail
this is the article describes about how the Gmail is produsing param links for uploaded files
0 commentsSave Tags: ajax, news, security, web 2.0
How Amazon Web Services needs to help Flex Developers
bloid 
via blog.smashedapples.com
There’s been a thread at the amazon simpledb forums discussing that AWS should implment a crossdomain.xml file. I agree that AWS should open up their... more »
0 commentsSave Tags: flash-flex, security, web services
Cross-Site Request Forgeries and You
As the web becomes more and more pervasive, so do web-based security vulnerabilities. I talked a little bit about the most common web vulnerability,... more »
1 commentsSave Tags: security
PHP Web Application Security Overview
bloid via devshed.com
With the web and web sites open to everyone -- including malicious hackers -- the security of web applications sits at the top of the list of issues... more »
2 commentsSave Tags: php, security, server
Run As The Root Account
Stop being a sissy. Every time you sudo a command, you deserve to have your man card taken away.
4 commentsSave Tags: humor, opinion, security
Rails, Trails, Lift, and Seaside
bloid via markwatson.com
I am fairly much "in like" with Rails: I have been using it for personal and customer projects for almost 3 years. If Ruby had good runtime... more »
0 commentsSave Tags: frameworks, opinion, other languages, security
After Windows 7: What Microsoft Should Do
Recently there has been some buzz as to what Microsoft has up their sleeves for Windows 7, the next version of Windows after the somewhat botched... more »
3 commentsSave Tags: microsoft, security, windows
Warning about the article "SQL Injection" in current "PHP Magazin"
It is not usually my custom to comment negatively or nitpick on other people's articles in magazines, especially not in magazines I have written for.... more »
0 commentsSave Tags: database, opinion, php, security
.NET MVC Controller Action Security Hole
The latest of Stephen Walther's invaluable ASP.Net MVC Tip series points out a MVC scenario that was previously unknown to me: passing cookies and... more »
0 commentsSave Tags: .net, frameworks, how-to, security
Using JBoss Seam security with Rules: an expert system for permission checks
JBoss Seam does a long list of amazing things. One that is often overlooked is its Rules-based security system. This system is able to express... more »
0 commentsSave Tags: java, security
A Billion More Laughs: The JavaScript hack that acts like an XML attack
It's a valid script, it's nearly impossible to detect and stop, and it will annoy users to no end. What's the answer to stopping scripts that will not... more »
0 commentsSave Tags: javascript, security, server, web 2.0
JOSSO - Java Open Single Sign-On Project
JOSSO, or Java Open Single Sign-On, is an open source J2EE-based SSO infrastructure aimed to provide a solution for centralized, platform neutral,... more »
0 commentsSave Tags: frameworks, java, security
The MD6 hash function (rough notes)
Ron Rivest presented his (along with a dozen other people's) new hash, MD6, yesterday at Crypto. I am not a hash guru although I've implemented SHA... more »
1 commentsSave Tags: research, security
Static analysis tool helps software engineers find bugs during builds
Klocwork Insight allows software engineers to view and correct their own code before it's submitted to QA. More than that, Mentor Graphics found this... more »
1 commentsSave Tags: agile, security
Chrome is a Security Nightmare, Indexes your Bank Accounts
Thierry.Lefort via tgdaily.com
Can a browser’s search function work too well? After playing around with Google’s brand new Chrome browser, we’ve discovered that its history search... more »
0 commentsSave Tags: security, tools, web design
Security Vulnerability with Google Chrome
Have you installed the new Google chrome? Make sure you’re careful with your application shortcuts because I just thought of a very easy way to Phish... more »
0 commentsSave Tags: news, security, web design
Code Signing in Adobe AIR
Adobe AIR, Adobe's platform for building desktop applications from web technologies, requires that all AIR-based applications be signed to secure... more »
1 commentsSave Tags: flash-flex, security, tools
OpenID Is Why I Hate The Internet
bloid via teddziuba.com
I've been farting around with Jeff Atwood's StackOverflow for a few weeks now as a beta tester. Everything was all well and good until I had to... more »
2 commentsSave Tags: opinion, security
Storing Passwords Securely - Wheeler Software
Use cryptographic techniques such as hash functions, salt and key stretching to store user passwords securely.
0 commentsSave Tags: how-to, security
