Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Whether this is about ha.ckers.org, sla.ckers.org or some other project you are interested in or want to talk about, throw it in here to get feedback. 

Current Page: 1 of 1
Results 1 - 6 of 6
5 years ago
securityninja
I appreciate your point but as I said in the original post in this thread what I have in that blog post is the very first steps. So I agree, the blog post is too high level but it was never actually intended to be an in depth discussion about each principle. Based on the work I'm publishing next month the developers I have spoken with (23 in total, including attendees of the local owasp chapte
Forum: Projects
5 years ago
securityninja
Hi everyone, I have started working on producing a guide for developers which focuses on a small set of principles for secure development. I have completed some of the groundwork which can be seen here: http://securityninja.co.uk/blog/?p=132 that blog post details my reasoning behind the guide and more specifically how I feel current approaches such as the "top x" lists aren't wor
Forum: Projects
5 years ago
securityninja
Hi d4rw1n - I'm glad you liked it :-)
Forum: Full Disclosure
5 years ago
securityninja
hi tx, I hadn't seen that quote before but I think it hits the nail on the head. I did try to make it a bigger PR issue by contacting a lot of the main stream IT and IT Security news sites but only one got back to me and that took 5 days - by then Facebook had fixed the flaw (details on the fix here: http://securityninja.co.uk/blog/?p=220). This is my first disclosure where I have been left
Forum: Full Disclosure
5 years ago
securityninja
hi guys, I had been thinking of getting rid of the forum for a while so you gave me the kick I needed ;-) I think what really frustrated me is that Facebook contacted me very quickly once I posted it on the Full Disclosure mailing list. They have even acknowledged that they received my contact with them and had a ticket open for it yet no one contacted me. Will sites ever learn to play th
Forum: Full Disclosure
5 years ago
securityninja
Hi everyone, I was creating a presentation last week covering the security risks and weaknesses of social networking websites and I found a few interesting things. The most interesting flaw I found was the poor control around access to users photo albums on Facebook, not the worlds biggest hack by a long way but still interesting. I contacted Facebook last Thursday and I never received a res
Forum: Full Disclosure
Current Page: 1 of 1