Archive | security RSS feed for this section

PHP Security

by Lyubomir Petrov on 14. Apr, 2008 in php, security

От доста време се каня да напиша една статия като цяло за web security, но все не ми остава време. Случайно попаднах на този сайт: http://www.securephpwiki.com/index.php/Main_Page Прегледайте го, ще се изненадате колко нови неща ще научите

Read full storyView Comments

Google Code: Issues – Cross-Site Request Forgery (XSRF)

by Lyubomir Petrov on 11. Apr, 2008 in google, security

There is possible XSRF on Google Code’s Issue list on the staring features. Using predefined GET request anyone can star a Issue on someone who is logged in Google currently. Tested and work in Firefox & IE (and maybe others). Proof of concept: Do some one need this ? Maybe some day after Google team [...]

Read full storyView Comments

Security Analysis: Pligg v9.8.2 (beta) (and maybe other versions)

by Lyubomir Petrov on 03. Nov, 2007 in php, security

After many sites started “web2.0 social networks” with Bulgarian language support, I’was thinking this system is secured, but it is not…

Read full storyView Comments

Отпуската ми :)

by Lyubomir Petrov on 16. Sep, 2007 in development, marketing, php, security, todos, userfriendly

Та ето днес сядам да пиша 1вата ми статия след отпуската ми от (10 дена от които 6 почивни ), та от голямото количество работа + проблеми (каква перфектна комбинация) = никакво свободно време. От 4 драфта, днес ще започвам 5ти та да се надявам скоро да ги пусна. Също малко новинки покрай Mylo, бета [...]

Read full storyView Comments

Phishing is dead ?

by Lyubomir Petrov on 16. Aug, 2007 in security

Oh, god…they did It..they killed all the phishers (peoples that do phishing..not fishing! ) “Phishing is an attack where someone sets up a site that looks like a site you have an account at, and tries to get you to log in at that site. If you enter your login credentials on this fraudulent site, [...]

Read full storyView Comments