RSS

domnit + security   68

Google Online Security Blog: Rewarding web application security research
google  security 
december 2010 by domnit
Firesheep
After installing the extension you'll see a new sidebar. Connect to any busy open wifi network and click the big "Start Capturing" button. Then wait. As soon as anyone on the network visits an insecure website known to Firesheep, their name and photo will be displayed. Double-click on someone, and you're instantly logged in as them.
security  http  firefox  apps 
october 2010 by domnit
The Invisible Things Lab's blog
compsci  security  blogs 
may 2010 by domnit
suEXEC Security Model
apache  unix  server  security 
october 2009 by domnit
GERIS '09 Program
compsci  academia  security  binghamton 
october 2009 by domnit
Why Python Pickle is Insecure
python  security 
september 2009 by domnit
Binary Analysis Platform: Security Analysis of Executable Code
compsci  security 
june 2009 by domnit
Lest We Remember: Cold Boot Attacks on Encryption Keys
crypto  security  hardware  compsci 
march 2009 by domnit
Ask HN: Where should I buy an SSL certificate for my site?
crypto  business  security 
february 2009 by domnit
html-whitelist
web  security 
september 2008 by domnit
Chrome antics: did Google reverse-engineer Windows?
google  microsoft  law  security  windows  browser 
september 2008 by domnit
The point of “Open” in OpenID
"I have a very simple rule of thumb for whether or not a site should consider whitelisting OpenID providers: does the site offer a “forgotten password” feature that e-mails the user a login token?"
openid  security 
june 2008 by domnit
Earthlink's domain name hijacking software allows hackers to rehijack non-existent subdomains
exploit  phishing  earthlink  hack  advert  security  dns  business  internet  web 
april 2008 by domnit
Greasemonkey 0.7.20080121.0 compatibility
"GM 'double-checks' the call stack of all calls into potentially unsafe Greasemonkey APIs to make sure that every frame on the stack is either from a user script, or from the browser DOM"
greasemonkey  security 
january 2008 by domnit
David Airey: Google’s GMail security failure leaves my business sabotaged
gmail  crime  hack  theft  internet  security  csrf 
december 2007 by domnit
What You Need To Know About Secure Password Schemes
crypto  security 
september 2007 by domnit
And-HTTPD
web  server  security 
september 2007 by domnit
Inside a nuclear fallout shelter in Lucerne, Switzerland
nuke  photo  security 
august 2007 by domnit
Mozilla Port Blocking
internet  security  mozilla  firefox 
june 2007 by domnit
Strange Loops: Ken Thompson and the Self-referencing C Compiler
unix  c  compiler  compsci  security  recursion 
april 2007 by domnit
Twitter and Jott Vulnerable to SMS and Caller ID Spoofing
mobile  security  phone  sms  auth 
april 2007 by domnit
My National Security Letter Gag Order
fbi  law  privacy  security  politics  terrorism  abuse  usapatriot  freedom 
march 2007 by domnit
setPasswordStrength() - Mozilla password strength function
mozilla  security 
march 2007 by domnit
Conflating JSON with Javascript or why there is no “Safe JSON”
json  javascript  security  csrf 
march 2007 by domnit
Redefining Array() to steal private JSON data (JSON is not as safe as people think it is)
json  javascript  security  exploit  csrf 
march 2007 by domnit
WordPress 2.1.1 dangerous, Upgrade to 2.1.2
"a cracker had gained user-level access to one of the servers that powers wordpress.org, and had used that access to modify the download file"
wordpress  security  exploit 
march 2007 by domnit
GoDaddy kills seclists.org, which includes an archive of the full disclosure mailing list, because News Corp asked them to
myspace  seclists  security  dns  newscorp  godaddy 
january 2007 by domnit
Idea: .bank TLD
internet  bank  phishing  security  money  dns 
january 2007 by domnit
mozilla/browser/components/search/nsSearchSuggestions.js - parseJSON
Firefox's "safe" JSON eval
mozilla  firefox  json  javascript  security 
december 2006 by domnit
Stevey's Blog Rants: Parabola
literature  scifi  compsci  java  complang  security  airport 
december 2006 by domnit
Shortest string for guaranteed keyless entry
cars  math  hack  lock  security 
december 2006 by domnit
How to turn your blog in to an OpenID
openid  howto  blogging  auth  security  identity 
december 2006 by domnit
The Six Dumbest Ideas in Computer Security
security  hack  software 
november 2006 by domnit
XXE (Xml eXternal Entity) Attack
xml  security  exploit 
november 2006 by domnit
The Treviño Story
Some guy decided to make a huge list of random Ubuntu repositories around the web, and he recommends people to dump it to their sources.list without thinking.
ubuntu  linux  security  exploit 
november 2006 by domnit
Packing weapons in checked bags for security
"TSA does not want to lose a weapons case. This reduces the chance of the case being lost to virtually zero."
weapons  security  hack 
october 2006 by domnit
Windows XP Privilege Escalation Exploit
The "at" command scheduler runs commands as the SYSTEM user
windows  security  hack  exploit 
september 2006 by domnit
Center for Information Technology Policy » Voting Study
election  security 
september 2006 by domnit
Schneier on Security: More Than 10 Ways to Avoid the Next 9/11
"Terrorism is a law enforcement problem, and needs to be treated as such."
terrorism  security  sept11 
september 2006 by domnit
Hot Captcha
security  sex  humor  captcha  spam 
july 2006 by domnit
Tin Foil Hats for the discriminating lunatic
clothing  paranoid  humor  security  conspiracy 
july 2006 by domnit
Manoj's Key-Signing Protocol
crypto  security  identity 
june 2006 by domnit
TrueCrypt - Free Open-Source On-The-Fly Disk Encryption Software for Windows XP/2000 and Linux
crypto  apps  privacy  security 
may 2006 by domnit
NSA has massive database of Americans' phone calls
spy  privacy  security  freedom  politics  phone  nsa  datamining  bush 
may 2006 by domnit
The NSA is on the line -- all of them
"An intelligence expert predicts we'll soon learn that cellphone and Internet companies also cooperated with the National Security Agency to eavesdrop on us."
nsa  spy  politics  security  privacy  freedom 
may 2006 by domnit
Federal Source to ABC News: We Know Who You're Calling
cia  fbi  politics  privacy  security  media  usa  bush  spy  freedom 
may 2006 by domnit
Kitten auth
security  ajax  humor  cats  animals  captcha 
april 2006 by domnit
Mozilla Bug 330884 - Uninstalling Firefox does not prompt to delete profile, causing break-up
mozilla  love  privacy  security  humor  firefox 
march 2006 by domnit
An Overview of Cryptography
crypto  security  compsci  hack  math 
march 2006 by domnit
DenyHosts
Ban hosts that repeatedly try to break in to an SSH server
unix  security  ssh  apps 
february 2006 by domnit
Ask the pilot: Photography at airports
"I took some pictures at the airport -- and fell into the clutches of bureaucrats mouthing the cheap prose of patriotic convenience."
security  photo  usa  plane  aircraft 
february 2006 by domnit
XSS (Cross Site Scripting) Cheat sheet
Huge list of XSS vectors
javascript  web  html  css  security  xss  hack 
february 2006 by domnit
Seed Vaults
Bond movie idea: Seedfinger
science  biology  farm  security  bondideas 
january 2006 by domnit
-moz-binding XSS
mozilla  javascript  security  xss  exploit 
january 2006 by domnit
Problems with HTTP Authentication Interop
web  security  humor  http 
january 2006 by domnit
Data Mining 101: Finding Subversives with Amazon Wishlists
datamining  hack  security  privacy  web  books  freedom  amazon 
january 2006 by domnit
Sony BMG - malware feature comparison
sony  drm  security  privacy 
november 2005 by domnit
Sony anti-customer technology roundup and time-line
On the recent Sony scandling
sony  drm  freedom  security  privacy 
november 2005 by domnit
Sony, Rootkits and Digital Rights Management Gone Too Far
Sony deserves a fucking lawsuit and boycott
drm  law  security  sony 
november 2005 by domnit
I'm Popular: the Samy Myspace worm
javascript  myspace  security  humor  hack  xss  exploit 
october 2005 by domnit
Samy, Their Hero
javascript  humor  security  myspace  hack  xss  exploit 
october 2005 by domnit
Google Secure Access: Frequently Asked Questions
google  internet  security  wireless 
september 2005 by domnit
SecurePHP Wiki
php  security 
september 2005 by domnit
Mozilla TLD whitelist to remedy homograph spoofing vulnerability
mozilla  internet  security  firefox  exploit 
july 2005 by domnit
REAL ID's flaws
law  security 
may 2005 by domnit
Darik's Boot and Nuke
Before selling or discarding a computer, deep clean the hard drive of private info (e.g., financial info.)
apps  hardware  security  privacy 
march 2005 by domnit
Master Lock Combination Cracking
security  howto  lock  exploit 
march 2005 by domnit
SQL Injection Attacks by Example
compsci  db  hack  security  exploit 
january 2005 by domnit

Copy this bookmark:



description:


tags: