If you design websites that employ user log-on abilities for which you maintain their sessions, you have to become familiar with cross-site request forgery (CSRF) and how to defend against it. It isn’t anything new, but but you see it pop up time and time again. It’s, shall I say, fairly important to your application’s [...]
website security's tag archives
Featured Articles
Protect Your PHP Includes...
Line 1: <?php Line 2: if ($_SERVER['REQUEST_URI'] == $_SERVER['PHP_SELF']) Line 3: exit(); [+]
Default Installations...
What is it with people leaving default installations public facing? They must think I don't [+]
Account Lockout in Linux - PAM Tally...
Some pretty basic functions are missing from most of the *-nix systems by default. One [+]
