Static analysis tool helps software engineers find bugs during builds
Klocwork Insight allows software engineers to view and correct their own code before it's submitted to QA. More than that, Mentor Graphics found this... more »
0 commentsSave Tags: agile, security
Chrome is a Security Nightmare, Indexes your Bank Accounts
Thierry.Lefort 
via tgdaily.com
Can a browser’s search function work too well? After playing around with Google’s brand new Chrome browser, we’ve discovered that its history search... more »
0 commentsSave Tags: security, tools, web design
Security Vulnerability with Google Chrome
Have you installed the new Google chrome? Make sure you’re careful with your application shortcuts because I just thought of a very easy way to Phish... more »
0 commentsSave Tags: news, security, web design
Code Signing in Adobe AIR
Adobe AIR, Adobe's platform for building desktop applications from web technologies, requires that all AIR-based applications be signed to secure... more »
1 commentsSave Tags: flash-flex, security, tools
OpenID Is Why I Hate The Internet
bloid via teddziuba.com
I've been farting around with Jeff Atwood's StackOverflow for a few weeks now as a beta tester. Everything was all well and good until I had to... more »
2 commentsSave Tags: opinion, security
Storing Passwords Securely - Wheeler Software
Use cryptographic techniques such as hash functions, salt and key stretching to store user passwords securely.
0 commentsSave Tags: how-to, security
Flash exploit served by Microsoft
Microsoft site (msn.no) serves trojan to thousands of users due to known Flash Player bug.
0 commentsSave Tags: flash-flex, microsoft, security, windows
Zero to Production in 15 Minutes
There still seems to be confusion about the relative simplicity or difficulty of deploying a Rails app using JRuby. Many folks still look around for... more »
0 commentsSave Tags: frameworks, java, ruby, security
300+ PHP Presentations Online
The PHP Presentation System hosts over three hundred presentations, covering a slew of different topics including performance, testing, debugging,... more »
0 commentsSave Tags: php, security, web services, xml
Data filtering using PHP's filter functions
Using PHP's filter_* functions, we can validate and sanitize data types, URLs, e-mail addresses, IP addresses, strip bad characters, and more, all... more »
0 commentsSave Tags: how-to, php, security
Administrators: Force Secure Passwords Because Users are Lazy
The story of how a stolen laptop and a careless employee got me banned from my favorite pawn shop.
0 commentsSave Tags: opinion, security, server
Best unobtrusive anti-spam technique (Not CAPTCHA)
By far one of the best techniques when fighting spam, specially because it doesn't require any special attention from the user!
3 commentsSave Tags: css-html, security, usability, web design
Restrict SSH to Run A Specific Command
bloid via chihungchan.blogspot.com
You may know that if you were to include your ssh public key in the remote host's authorized_keys file, you can ssh/scp into that remote machine... more »
0 commentsSave Tags: security, tools, unix-linux
My Website's SQL Database was Hacked
I received an email from my website manager indicating several errors across different pages. I hate days that start with issues like that, I first... more »
0 commentsSave Tags: database, reviews, security
Tutorial: Cracking WEP Using Backtrack 3
This article will explan how to crack 64bit and 128bit WEP on many WIFI access points and routers using Backtrack, a live linux distribution. Your... more »
0 commentsSave Tags: how-to, security, unix-linux
6 Deadly AJAX Drawbacks: Are you aware?
Ashish Nayyar via hurricanesoftwares.com
Some developers view AJAX as the silver bullet for every scenario. However, AJAX introduces its own set of hazards in various areas, which include:... more »
4 commentsSave Tags: ajax, javascript, security, xml
SOA Security 101: Patching the Firewall Hole
Service-oriented architectures have opened and connected “black box” software implementations across enterprises, resulting in a new set of... more »
1 commentsSave Tags: java, security, web services
Password authentication without revealing your password
The majority of personalized web sites use some kind of form-based password authentication where you have two form fields for username and password,... more »
6 commentsSave Tags: how-to, javascript, security
Torvalds: Fed up with 'security circus'
Linus Torvalds, creator of the Linux kernel, says he's fed up with what he sees as a "security circus" surrounding software vulnerabilities and how... more »
2 commentsSave Tags: opinion, security, unix-linux
Where is the Net::SSH bug
Thierry.Lefort via ola-bini.blogspot.com
Yesterday I spent several hours trying to find the problem with our implementation of OpenSSL Cipher, that caused the Net::SSH gem to fail miserable... more »
0 commentsSave Tags: ruby, security, server, web 2.0
SQL Injection attacks in the wild - why they're working and what to do
Over the past several days, a significant number (in the thousands) of web applications, some of them well-known and well-used, have fallen victim to... more »
0 commentsSave Tags: database, security
Common Security Flaws In PHP Applications
No matter how long you’ve been programming or scripting, once in a while you’ll catch yourself making a serious (security) flaw that you thought you’d... more »
0 commentsSave Tags: how-to, php, security, standards
Web Application Security
kailashk via hurricanesoftwares.com
How would you determine whether your website is being hacked or not? Read the way hacker steals the information and hacks your website. Moreover, how... more »
0 commentsSave Tags: database, php, security, web services
Java Web Applications Spread Bots and Keyloggers?
In its report, Cybercrime Trends for 2008, Symantec claims, "Java-based Web applications—small programs, such as video players or interactive maps,... more »
0 commentsSave Tags: java, security, usability, web design
Google Releases an Open Source Cryptography Toolkit
Google has just released an open source cryptographic toolkit: Keyczar. The company is aiming to make inherently complex cryptography easier and safer... more »
2 commentsSave Tags: frameworks, java, python, security
