- My Name is Tom, or Errant. I write about geeky things, politics, and life in general and politic. My current day job is in computer security but I have been known to program in my spare time.
Tag Archives: security
I’ve been mulling over this issue for a little while; how do you secure a web application backed by a RESTful Api? The answer varies from simple to complicated. The Problem First, lets consider the full problem. The important thing we need … Continue reading
So, password security is in the news again with the Gawker break in. As usual there is a lot of average advice about passwords. Here’s some tips… Choosing a good password is all about entropy. One common piece of advice … Continue reading
When people find out I work in computer security they usually, at some point, ask me about how I come up with “secure passwords”. My advice (which follows) is incredibly simple – and usually gets scoffed at. “You can’t be … Continue reading
A fortuitous combination of reading materials this week has prompted a rather worrying thought: and the shocking things is I don’t think anyone “important” has really considered it. Digital Britain The first item on my reading list was the Digital … Continue reading
XSS is a pain – people can inject code into a URL link to do all manner of painful things to you. But XSS is not just a worry for the site the exploit targets – it is a worry … Continue reading
Some stuff at work today reminded me that I needed to write a post on hashes – and Md5 in particular. Apologies in advance for the shortness of this – I’m feeling a little under weather. A lot of people … Continue reading