March 6th, 2010, 09:53 AM
Opera claims the exploit is not exploitable. http://twitter.com/opvard/status/10022205189
January 20th, 2010, 02:17 PM
Is that all? No PHP code?
January 19th, 2010, 06:33 PM
I'm working on a web application that require that i encrypt some of the data. I have looked trough some discussions on the net, but most of them are inconclusive.
Where do I store the key? At...
January 19th, 2010, 06:28 PM
They should do like Microsoft does with macros in office documents. Ask the user if he want to enable JS for the document he is opening.
January 14th, 2010, 01:40 PM
No. Apache reads .htaccess for each request.
January 13th, 2010, 08:23 PM
You could off course make a couple of .htaccess files depending on the different access settings you want, and then setup cronjobs to copy the .htaccess you want to be active into your document root....
January 12th, 2010, 06:37 PM
I think I'm actually going to test it a bit myself, thanks. I have a couple of harddrives that I'm going to throw away. So I think I'll just try Eraser, and see if I'm able to recover anything when...
January 10th, 2010, 09:55 PM
Thank you nihil!
That was most helpfull. :)
January 8th, 2010, 04:54 PM
This seems like a really nice tool. :) Do you have indication on how well it does the job? This can be really usefull for my unencrypted drive.
January 8th, 2010, 04:47 PM
At the moment I have implemented support for Yubikey (http://yubico.com/products/yubikey/). It does not offer all the same functions as Umikey, but all you need to pay for is the hardware itself....
December 29th, 2009, 11:54 PM
Well, thanks for the advice and input. This discussin has proven helpfull, and since this topic is not wery much discussed around the net it's hard to get any feedback at all. So every bit of input...
December 29th, 2009, 08:40 AM
The reason I want to use 2FA is simple. Users are not able to choose a secure password and store it in a safe way. Therefore the "something they know" aspect isnt safe enough in my oppinion....
December 27th, 2009, 02:17 PM
Sounds fair enough. I'm not looking for same security as online banks, but I'm aiming close.
So what I have now is regular username/password login with a one time password sendt to the user on...
December 26th, 2009, 03:07 PM
I'm working on a web service that needs two factor authorization, and therefore I need a way of securely distributing one-time passwords. The primary method will be sending a SMS to the users phone...
April 9th, 2006, 12:54 PM
Well, it depends on what you know. If you don't know anything about web development. I would suggest you start with the basic fundamentals.
- How the HTTP protocol works