Sunday, December 14th, 2008
Older versions of the popular Wordpress plugin WP-DP-Backup leaves the copy of your entire database in a public folder for all to see. The databases were stored in wp-content/backup/ and a quick Google search today still returns many databases of sites, including some as recent as a few days ago:
http://www.google.com/search?num=100&hl=en&suggon=0&safe=off&q=intitle%3A%22index+of+%2Fwp-content%2Fbackup%22&btnG=Search
For ...
Posted in Coding, Internet, Privacy, Security, Software | No Comments
Tuesday, November 4th, 2008
The Ruby on Rails Security Project have published a Ruby on Rails Security Guide as a free e-book and also made it available as HTML. The guide covers how to secure Ruby on Rails applications, looking at, sessions and how to manage them securely, cross site forgery, redirection and other ...
Posted in Coding, Internet, Security, Software | No Comments
Wednesday, July 16th, 2008
Viacom and other copyright holders have agreed to let YouTube mask user IDs and Internet addresses when Google Inc.'s online video site hands over viewership records in a $1 billion lawsuit accusing YouTube of enabling copyright infringement. A federal judge ordered the database produced in a July 1 ruling widely ...
Posted in Internet, Privacy | No Comments
Tuesday, June 24th, 2008
The MSRC released an advisory today that discusses the recent SQL injection attacks and announces three new tools to help identify and block these types of vulnerabilities. The advisory discusses the new tools, the purpose of each, and the way each complements the others. The goal of this blog post is ...
Posted in Coding, Internet, Security, Software | No Comments
Tuesday, June 10th, 2008
If you're looking for a vulnerability scanner, chances are you've come across a number of expensive commercial products and tools with long lists of features and benefits. Unfortunately, if you're in the same situation as most of us, you simply don't have the budget to implement fancy high-priced systems. You ...
Posted in Coding, Internet, Linux, Networking, Privacy, Security, Software, Windows | No Comments
