It’s no secret that the world runs on open-source. From our Apache and NGinx webservers, our Ubuntu server OS’s, even our .NET and python programming languages. However, how many think that this could potentially be an issue?
Security
AWS Secret Storage
Working with any form of a secret in development such as usernames, connection strings, passwords, etc is always difficult. Simply finding a convenient and efficient way of storing them without putting them in source control can be a daunting task…. Read More ›
Hackers gainaccess to US power grid
In a time of hacker attacks on critical infrastructure, even a run-of-the-mill malware infection on an electric utility’s network is enough to raise alarm bells. But the latest collection of power grid penetrations went far deeper: Security firm Symantec is warning… Read More ›
CredCheck and the 700m data leak
In light of the recent 700 million email data leak on August 30 of this year, I have created CredCheck. I would like to throw out a personal thanks to Troy Hunt owner and operator of HaveIBeenPwned. CredCheck is a windows… Read More ›
Storing Sessions in a database
Most common applications and “home-brew” sites use sessions for storing temporary data as well as authentication. However, sometimes a developer may want the session to span over multiple domains and or servers, and some may just be very security conscience…. Read More ›
Secure Hashing
Many developers believe in the practice of securing passwords and other financial data using a hash function (a function of turning some kind of data into a small number that may serve as a digital “fingerprint”). However just hashing a… Read More ›