-
Limited users – myth or reality
Fellow security blogger, Kurt Wismer, says that there are limited advantages to limited users. He is right in all his arguments: A program running in your account, even if it is a limited user account, still has access to all of your files. It can search in them for e-mail addresses, wipe them or do…
-
Whos timeserver are you using?
There was a controversy some time ago involving D-Link and Poul-Henning Kamp where the former were using the timeserver set up by the later as default in their routers, effectively generating a DDoS on the server without giving any recompensation for it. The matter was amically resolved in the end, but it seems that corporations…
-
Replying to the reply – PEiD
In a previous post I took issue with Chad McMillan’s claim that they had a revolutionary technology of identifying packed executables (btw., if you are interested, you can read my thoughts on the idea of packing your executables). He replied to me and in the spirit of fairness I publish his reply (with his consent…
-
PHP coders of the world – secure your code!
Being a seasoned coder myself (I’ve been doing PHP coding on and off for 6 years now) I think I can speak with some authority about this subject. I came to believe that PHP is pretty much a Perl copy-cat where they eliminated the features which they considered too hard for the beginner. While catering…
