DIY Security paper
I wanted to do this for quite some time, but kept putting it off because of work etc… I had a lull in my schedule recently so I finally decided to go through with it. Note: When I say “Security Paper”,...
View ArticleA malfunctioning or malicious add-on has caused Internet Explorer to close...
This disease suddenly started after I ran an update on my Windows 7 machine, but I’m not really sure if it was an existing addon compatibility issue before I ran the update. Although I am sure that...
View ArticleTransparent Evangelism no longer Transparent
The following is a commentary on the company, not their service. A friend of mine emailed me in the afternoon regarding some whitewashing and sent me a few links; I guess this was just bad timing...
View ArticleUltra-secure passwords part II
This is mostly a followup to my original post on easily generating passwords from a mnemonic. It was prompted by a comment by Francesco Sullo advocating against the method, saying “If the attacker is a...
View ArticleAn Encrypted Christmas Greeting
A little while ago, I wrote a simple one-time pad utility in JavaScript that can be used to send encrypted messages with relative security. One-time-pad is technically cryptographically secure, however...
View ArticleCryptographically secure One-time Pads
It’s the end of Christmas day… And I’ve got a splitting headache (because I don’t drink and had to watch everything). Luckily I’m not covered in someone else’s puke or urine, which is always nice. No...
View ArticleOpenBSD: Otherwise known as Marmite
There are a lot of misconceptions about OpenBSD, chief of which is that it’s bulletproof. Well, the default install has had “only two remote holes, in a heck of a long time”, however those of us on...
View ArticleAnatomy of a PHP trojan
A very small sample of how incorrectly configured websites can invite trouble for visitors. I was prompted to write about this after hearing about a hacking incident of another friend’s website. The...
View ArticleBanks still don’t get online security
I was changing my Chase account password online when I came across this mess. Change password page And establishment IT strikes again. You idiots still don’t get it I can understand this limitation for...
View ArticleRendering a CAPTCHA image in PHP
It’s been a while since I posted anything web or programming related (I honestly don’t even the remember the last time) so I thought I’d post an update with something asked in an email by a friend. He...
View ArticleHi, Your Encryption Sucks
This is a result of programmers trying to reinvent the wheel, more often than not, when existing tools are more that sufficient to get the job done. But since these are efforts by those who either...
View ArticleDIY Hashing (if you must)
Every so often, I come across more and more clever schemes implemented by programmers wanting to one-up on what’s already available in their favorite software libraries. My response is DON’T DO IT! For...
View ArticleHas files.wordpress.com been compromised? Or is it just a false positive?
Just now, when I visited my own blog (after ignoring it for ages), I came across this alarming scene : Upload server compromised? When I tried to upload that image, I noticed that all files have been...
View ArticleFirewall.php
Since yesterday, I’ve been working on my forum script again (oh, you mean the one you’ve been working on since 2009?! Er… yes). The good news is that I’m finally getting somewhere. Bad news, I had to...
View ArticleVery simple encryption class for PHP
I’ve been getting emails asking about the encryption class I put up a couple of months ago. There were many requests asking for a more simplified version just pertaining to encryption. That’s a good...
View Article
More Pages to Explore .....