Clik here to view.
DIY Security paper
I wanted to do this for quite some time, but kept putting it off because of work etc… I had a lull in my schedule recently so I finally decided to go through with it. Note: When I say “Security Paper”,...
View ArticleClik here to view.
A malfunctioning or malicious add-on has caused Internet Explorer to close...
This disease suddenly started after I ran an update on my Windows 7 machine, but I’m not really sure if it was an existing addon compatibility issue before I ran the update. Although I am sure that...
View ArticleClik here to view.
Transparent Evangelism no longer Transparent
The following is a commentary on the company, not their service. A friend of mine emailed me in the afternoon regarding some whitewashing and sent me a few links; I guess this was just bad timing...
View ArticleClik here to view.
Ultra-secure passwords part II
This is mostly a followup to my original post on easily generating passwords from a mnemonic. It was prompted by a comment by Francesco Sullo advocating against the method, saying “If the attacker is a...
View ArticleClik here to view.
An Encrypted Christmas Greeting
A little while ago, I wrote a simple one-time pad utility in JavaScript that can be used to send encrypted messages with relative security. One-time-pad is technically cryptographically secure, however...
View ArticleClik here to view.
Cryptographically secure One-time Pads
It’s the end of Christmas day… And I’ve got a splitting headache (because I don’t drink and had to watch everything). Luckily I’m not covered in someone else’s puke or urine, which is always nice. No...
View ArticleClik here to view.
OpenBSD: Otherwise known as Marmite
There are a lot of misconceptions about OpenBSD, chief of which is that it’s bulletproof. Well, the default install has had “only two remote holes, in a heck of a long time”, however those of us on...
View ArticleClik here to view.
Anatomy of a PHP trojan
A very small sample of how incorrectly configured websites can invite trouble for visitors. I was prompted to write about this after hearing about a hacking incident of another friend’s website. The...
View ArticleClik here to view.
Banks still don’t get online security
I was changing my Chase account password online when I came across this mess. Change password page And establishment IT strikes again. You idiots still don’t get it I can understand this limitation for...
View ArticleClik here to view.
Rendering a CAPTCHA image in PHP
It’s been a while since I posted anything web or programming related (I honestly don’t even the remember the last time) so I thought I’d post an update with something asked in an email by a friend. He...
View ArticleClik here to view.
Hi, Your Encryption Sucks
This is a result of programmers trying to reinvent the wheel, more often than not, when existing tools are more that sufficient to get the job done. But since these are efforts by those who either...
View ArticleClik here to view.
DIY Hashing (if you must)
Every so often, I come across more and more clever schemes implemented by programmers wanting to one-up on what’s already available in their favorite software libraries. My response is DON’T DO IT! For...
View ArticleClik here to view.
Has files.wordpress.com been compromised? Or is it just a false positive?
Just now, when I visited my own blog (after ignoring it for ages), I came across this alarming scene : Upload server compromised? When I tried to upload that image, I noticed that all files have been...
View ArticleClik here to view.
Firewall.php
Since yesterday, I’ve been working on my forum script again (oh, you mean the one you’ve been working on since 2009?! Er… yes). The good news is that I’m finally getting somewhere. Bad news, I had to...
View ArticleClik here to view.
Very simple encryption class for PHP
I’ve been getting emails asking about the encryption class I put up a couple of months ago. There were many requests asking for a more simplified version just pertaining to encryption. That’s a good...
View Article
