PHP Error Reporting and Security
Error reporting in PHP gives valuable insight during the development stages. This Insight can be a great aid to problem solving. There are others, however who are interested in why your web site has...
View ArticleHow to Protect Against SQL Injection
One of the most common web security problems is SQL Injection. As the name implies, SQL injections works by introducing malicious SQL code where it doesn’t belong. Since it is SQL code you could...
View ArticleDrupal Comments In A Block
Why would you need to put Drupal comments into a block? Well, recently I was working with another developer that decided to use Quick Tabs to create a menu that would show the current content type’s...
View ArticleDrupal Security Best Practices When Outputting Text Into HTML
When creating a module in Drupal it is very important to be aware of some security best practices when outputting text into HTML. This helps prevent XSS (Cross Site Scripting) exploits and keeps your...
View ArticleSecure URL Handling with Drupal
In most cases dynamic data in forms is handled by the forms API which does a pretty good job of keeping it clean. Since the variables in hook_menu() for example are picked up as a % sign and then...
View ArticleUsing SGID to Control Group Ownership of Directories
1. My login id is paul and my primary group is webdev. I’m also a member of several other groups including staff. By default, any file (including a directory) I create will be marked with the group...
View Articleumask Explained with Examples
umask is a unix command that sets the default file permissions for all newly created files and directories. It can be used to control the default file permission for new files. This little blurb...
View ArticleHow To Create a Password Hash with Python passlib
Create a password hash with python passlib A quick and easy way to create a password hash is with python passlib. Install passlib with pip like this: sudo pip install passlib Then, run the command...
View ArticleHow to use multiple ssh keys for different accounts
I wanted to have multiple rsa keys for various different hosts to help prevent hidden connection issues. Issues may arises when an rsa key is changed on one host that may have been used on another host...
View ArticleHow to set up ubuntu secure ssh login (AWS & Digital Ocean)
Ubuntu Initial Setup: setup ubuntu secure ssh login on digitalocean or Amazon Web Services EC2 instance Download PDF: Download Secure Login Cheat Sheet PDF This post is a “cut to the chase”, “gitter...
View Article
More Pages to Explore .....