security
Glassfish containter security authentication - how to add salt (j_security_check)
How to add salt when I want to authenticate users using web.xml security (j_username, j_password, j_security_check)?[详细]
2023-04-13 00:11 分类:问答Checking a constant for security reason
Some applications use this code as FIRST LINE on every page included by the index.php: if (!defined(\'SEC开发者_如何学PythonURE_CONST\')) { die(\"Access denied!\"); }[详细]
2023-04-12 22:17 分类:问答Is storing PHP code in a database, and eval()ing it at runtime, insecure?
I\'ve built a program that stores, retrieves, and eval()s code from a SQLite database. Before I get jumped for my bad coding practices, let\'s just treat this as a theoretical and pretend that I have[详细]
2023-04-12 21:43 分类:问答How to recognize fake SSL certificates?
I\'ve read about SSL protocol and now, I know how it encrypts data. But there is something I couldn\'t understand. With SSL , you\'re sure you\'re sending data to and getting data from correct server.[详细]
2023-04-12 21:41 分类:问答Gwt security widget level
I\'m probably asking a newbee question but i\'m wondering if there is a security issue to use roles to set the visibility of some field in a a Gwt panel (Smartgwt but doesn\'t change the problem).[详细]
2023-04-12 20:54 分类:问答WSGI, Werkzeug and form based authentication
I would like to implement a WSGI/Werzeug based web application and need help implementing the form based authentication. I found repoze.who and think it solves most of my problems. It works fine with[详细]
2023-04-12 20:28 分类:问答ASP.Net - Maintaining session state and site security after authentication via API
I\'m working on the front-end of a web application and the login page so far basically contains a textbox for username, a textbox for password and a submit button.[详细]
2023-04-12 18:25 分类:问答Are Heroku dynos vulnerable to BEAST? (TLS 1.0 CBC exploit)
Was reading an article in The Register about BEAST which lead me to the SO post about SslStream, BEAST and TLS 1.1[详细]
2023-04-12 18:13 分类:问答MySQL: Create a user for reading and another for writing?
I have been searching for this for a while and unable to find something useful. Is it a good practice or even important to create 2 MySQL users, one for reading and then use that whenever I\'m initia[详细]
2023-04-12 14:15 分类:问答PHP - is it safe to store anything in the $_SESSION superglobal?
Is it safe to store for example user permissions like $_SESSION[\'username\']=\'vputin\'; $_SESSION[\'ip\']=$_SERVER[\'REMOTE_ADDR\'];[详细]
2023-04-12 13:18 分类:问答