A bug fix patch for Drupal Commons 3's Radioactivity module has been officially committed to the project.
A practical guide to configuring secure TLS ciphers for Apache, nginx, and HAProxy to achieve a top SSL Server Test score.
A tutorial on implementing two-factor authentication for SSH using Google Authenticator and PAM.
Explains how to securely upload files directly from a client to Windows Azure Blob Storage using Shared Access Signatures (SAS).
A guide to securing ASP.NET Web APIs using OAuth2 and Windows Azure Access Control Service for modern app authentication.
Upcoming improvements to Dabblet, including JavaScript support, cross-browser compatibility, security enhancements, and Prism integration.
The author updates the Apache module mod_defensible to be compatible with Apache 2.4, discussing the process and its utility as a prototype.
Debunks the myth that PHP is inherently insecure, attributing its reputation to FUD, its ubiquity, and its forgiving nature for beginners.
Explains how to use OpenID with Google Apps to secure internal company applications, replacing VPNs for a cleaner authentication workflow.
A security researcher details a clickjacking vulnerability in Adobe Flash that allowed websites to secretly activate users' webcams and microphones.
Analysis of the AVG Mobilation antivirus app for Windows Phone, revealing it as a non-functional port with humorous, ineffective scanning code.
Oracle's July Critical Patch Update addresses a security vulnerability (CVE-2011-2241) in OBIEE versions 10.1.3.4.1 and 11.1.1.3.
Discusses the prevalence of Game Center score hacking via jailbreak apps and criticizes Apple's lack of enforcement.
Introducing bpssl, a Django application for managing HTTPS redirection and securing specific URLs at the application level.
A technical guide on creating a Python decorator to restrict Google App Engine cron job URLs to authorized requests only.
A technical analysis of how an expired database password caused Informatica to spawn excessive connections, crashing an Oracle server.
Exploring the idea of automatic login via notification emails, discussing the tradeoffs between usability and security.
A technical guide for troubleshooting EBS-BI integrated authentication by validating session cookies directly in the Oracle database.
daloRADIUS update deprecates old user portal authentication method, introduces new password and permission settings for better security.
Investigating Google Chrome's persistent background connections to 1e100.net domains, exploring their purpose and potential tracking implications.
