Security

Cross-Site Request Forgeries (CSRF)

Posted by Christopher on September 2, 2007 | Comments (0) | Trackbacks (1)

Today I want to cover a kind of security issue that is not addressed very often. Just about any book or article aimed at developers has some warning about XSS and SQL injection. Those two attacks are arguably two of the most harmful, but there are certainly other things to be weary of. In this [...]

Tags: csrf, PHP, Security, xss
Categories: PHP, Security

Password Security

Posted by Christopher on May 29, 2007 | Comments (0) | Trackbacks (0)

Almost every website has some sort of members-only area. Anything from a profile system to something as simple as email subscriptions for articles. What every members area has in common is some way for a user to authenticate themselves. Most likely, this is through a username and a password. What I’m going to talk about [...]

Tags: hash, md5, passwords, PHP, Security, sha1
Categories: PHP, Security

Security

Cross-Site Request Forgeries (CSRF)

Password Security

Subscribe via RSS

Recent Posts

Topics

Archives

Links