A guide to securing the Docker API by using SSL certificates and socat for encrypted, authenticated remote connections.
Explains how to pass server-generated JSON data to the front-end when Content Security Policy (CSP) blocks inline scripts, comparing performance impacts.
Guide to securely connect SQL Server Management Studio to an Azure IaaS SQL Server instance by configuring endpoints and enabling encrypted connections.
A humorous proof-of-concept exploit using HTML5 localStorage to fill a user's hard disk, highlighting browser security flaws.
A user investigates why Google search results for 'stackoverflow' incorrectly linked to a US government website, revealing a web developer's redirect error.
A bug fix patch for Drupal Commons 3's Radioactivity module has been officially committed to the project.
A practical guide to configuring secure TLS ciphers for Apache, nginx, and HAProxy to achieve a top SSL Server Test score.
A tutorial on implementing two-factor authentication for SSH using Google Authenticator and PAM.
Explains how to securely upload files directly from a client to Windows Azure Blob Storage using Shared Access Signatures (SAS).
A guide to securing ASP.NET Web APIs using OAuth2 and Windows Azure Access Control Service for modern app authentication.
Upcoming improvements to Dabblet, including JavaScript support, cross-browser compatibility, security enhancements, and Prism integration.
Explains how to use OpenID with Google Apps to secure internal company applications, replacing VPNs for a cleaner authentication workflow.
A security researcher details a clickjacking vulnerability in Adobe Flash that allowed websites to secretly activate users' webcams and microphones.
Analysis of the AVG Mobilation antivirus app for Windows Phone, revealing it as a non-functional port with humorous, ineffective scanning code.
Discusses the prevalence of Game Center score hacking via jailbreak apps and criticizes Apple's lack of enforcement.
Introducing bpssl, a Django application for managing HTTPS redirection and securing specific URLs at the application level.
A technical guide on creating a Python decorator to restrict Google App Engine cron job URLs to authorized requests only.
Exploring the idea of automatic login via notification emails, discussing the tradeoffs between usability and security.
daloRADIUS update deprecates old user portal authentication method, introduces new password and permission settings for better security.
Investigating Google Chrome's persistent background connections to 1e100.net domains, exploring their purpose and potential tracking implications.
