Review of 19 Deadly Sin of Software Security

I’ve just completed a review of Howard and LeBlanc’s new book: http://www.greebo.net/?page_id=325 I was expecting something else, and I’m a bit disappointed. But that’s okay, it’s still a great book for the PHP and Java programmers out there. I just think Writing Secure Code and OWASP Guide 2.0 is a better reference for significant projects. […]

Advogato – On Basic Digest Authentication

21 Nov 2000 ยป gstein: basic digest authentication is evil and is first against the wall when the revolution comes As far as security people like me are concerned, basic digest is in the clear. It’s base64 encoded ASCII text. Therefore it’s in the clear, as the amount of transformation that is required is not […]