New TYPO3 Security Guide
The TYPO3 community released an new TYPO3 Security Guide! This is the most comprehensive security guide on TYPO3 ever released and its a must read for anyone working with TYPO3. And to quote something from the announcement which caught my attention: Security is not a state that you can reach and stop worrying about. It [...]
Back in business
I didn’t post on this blog since the middle of february. You may wonder why is that. First of all i had lots and lots of work. One would ask : What global crisis ? I didn’t experienced it yet. I hope not to do that in the future. Second: i was on vacation in [...]
Critical security issue in Typo3 core – all versions
A very serious security issue has been discovered in Typo3 core, all versions including 4.2.5 are affected. According to some this is the most critical security breach in Typo3 ever discovered. The vulnerability allows attackers to “download the contents of any file on the server, i.e. typo3conf/localconf.php, which holds both install tool password alongside database username [...]
Upgrade your browser!
Often i found myself wondering about why people use some antique and insecure software. For example Internet Explorer 6. This browser was launched back in 2001 and many many people still use it. Now when Internet Explorer 8 is about to be launched. In fact if you look in the statistics of any high trafic [...]
Google’s browser security handbook
I’ve received today a link to this Browser security handbook written by Michal Zalewski from Google. It is an excellent document worth reading by every webdeveloper. The author does a very thorough comparation of security features of modern browsers, so this document can be handy to check it up when you design/develop a web application [...]
