“security” Archive

Subtopics: authentication, authorization, cors, cryptography, csp, vulnerabilities (non-exhaustive) · glossary look-up: “security”

287. Developer Guide: How to Implement Passkeys (via) · Dec 16, 2024 · guides, how-tos, authentication, passkeys
288. Avoid Hotlinking Images With “Cross-Origin-Resource-Policy” · Nov 27, 2024 · images
289. Content Security Policy Level 3 (by/via) · Nov 22, 2024 · standards, csp
290. Security (by+/via) · Nov 11, 2024 · web-almanac, studies, research, metrics
291. JavaScript Import Attributes (ES2025) (by) · Nov 10, 2024 · javascript
292. Exploring Internet Traffic Shifts and Cyber Attacks During the 2024 US Election (by+/via) · Nov 6, 2024 · traffic
293. Securing Your Express REST API With Passport.js (by/via) · Nov 3, 2024 · nodejs, express, json-web-tokens, apis, tooling
294. SecretLint—a Linter for Preventing Committing Credentials (by) · Oct 22, 2024 · tooling, linting
295. The Importance of UX in Cybersecurity (by/via) · Oct 21, 2024 · user-experience, usability
296. Top 4 Web Vulnerabilities With Example and Mitigation (by/via) · Oct 21, 2024 · vulnerabilities, sql, databases
297. Understanding “npm audit” and Fixing Vulnerabilities (by) · Oct 21, 2024 · npm, vulnerabilities, nodejs
298. How to Implement Content Security Policy (CSP) Headers for Astro (by) · Oct 16, 2024 · how-tos, http, http-headers, csp, astro, vercel, cloudflare
299. Why Code Security Matters—Even in Hardened Environments (via) · Oct 8, 2024 · vulnerabilities, file-handling, nodejs
300. Database 101: SSL/TLS for Beginners (by/via) · Oct 4, 2024 · introductions, databases, ssl, tls, authentication
301. Cloudflare Study: 39% of Companies Losing Control of Their IT and Security Environment (by) · Oct 3, 2024 · studies, research, engineering-management
302. NIST Recommends Some Common-Sense Password Rules (by) · Sep 27, 2024 · passwords, guidelines
303. I Finally Understand OAuth · Sep 24, 2024 · authorization, oauth, processes
304. Fake GitHub Site Targeting Developers (by/via) · Sep 19, 2024 · github
305. Hacking Cars in JavaScript (Running Replay Attacks in the Browser With the HackRF) (by) · Sep 16, 2024 · javascript
306. Gaining Access to Anyone’s Browser Without Them Even Visiting a Website (by) · Sep 7, 2024 · arc, browsers, vulnerabilities
307. 5 Wasm Use Cases for Frontend Development (by/via) · Aug 21, 2024 · guest-posts, webassembly, performance
308. Migrating From Netlify to Cloudflare for AI Bot Protection (by) · Aug 6, 2024 · migrating, netlify, cloudflare, ai
309. The Great npm Garbage Patch (via) · Aug 6, 2024 · dependencies, npm, spam
310. Frontend Security Checklist (by) · Jul 30, 2024 · checklists, react
311. Automated Ways to Security Audit Your Website · Jul 28, 2024 · auditing, automation, tooling
312. Secure Node.js Applications From Supply Chain Attacks (by/via) · Jul 25, 2024 · nodejs, best-practices, dependencies
313. The Pitfalls of In-App Browsers (via) · Jul 18, 2024 · browsers, mobile, privacy, user-experience
314. The Cloud Run Security Gap You Didn’t Know You Had (and How to Fix It) (by) · Jul 18, 2024 · google, gcp
315. Supply Chain Security in npm—We Can Be Optimistic About the Future (by/via) · Jul 9, 2024 · npm, dependencies, provenance
316. Script Integrity (by/via) · Jul 5, 2024 · embed-code, javascript
317. Introducing the MDN HTTP Observatory (by/via) · Jul 2, 2024 · introductions, mozilla, http
318. WebAuthn: Enhancing Security With Minimal Effort (by/via) · Jul 2, 2024 · authentication
319. Tuesday, July 2, 2024 Security Releases (via) · Jul 2, 2024 · release-notes, nodejs
320. RegreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH Server (by/via) · Jul 1, 2024 · ssh, vulnerabilities
321. Polyfill Supply Chain Attack Embeds Malware in JavaScript CDN Assets (by/via) · Jun 26, 2024 · vulnerabilities
322. Catching Compromised Cookies (by/via) · Jun 25, 2024 · cookies, testing
323. Backdoor Slipped Into Multiple WordPress Plugins in Ongoing Supply-Chain Attack (by/via) · Jun 24, 2024 · wordpress, plugins
324. The Hacking of Culture and the Creation of Socio-Technical Debt (by) · Jun 19, 2024 · culture
325. OAuth Authentication (by/via) · Jun 15, 2024 · authentication, authorization, oauth
326. What Is Mixed Content? (by) · Jun 15, 2024 · http
327. Researchers Uncover npm Registry Vulnerability to Cache Poisoning and DoS Attacks (by/via) · Jun 15, 2024 · npm, dependencies, vulnerabilities, caching
328. How a Single Vulnerability Can Bring Down the JavaScript Ecosystem (by) · Jun 3, 2024 · javascript, npm, dependencies, caching, vulnerabilities
329. JavaScript Security: Simple Practices to Secure Your Frontend (by/via) · May 15, 2024 · javascript, dependencies, csp
330. Manifesto for a Humane Web (by) · May 10, 2024 · websites, manifestos, web, principles, accessibility, dei, sustainability, user-experience
331. Securing Client-Side JavaScript (by) · May 5, 2024 · javascript, graceful-degradation
332. Poor Express Authentication Patterns in Node.js and How to Avoid Them (by) · May 3, 2024 · express, nodejs, authentication
333. Passkeys: A Shattered Dream (by) · Apr 26, 2024 · authentication, passkeys
334. Using Legitimate GitHub URLs for Malware (by) · Apr 22, 2024 · github
335. When Security and Accessibility Clash: Why Are Banking Applications So Inaccessible? (by) · Apr 17, 2024 · accessibility
336. Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects (by+/via) · Apr 15, 2024 · foss
337. Wednesday, April 10, 2024 Security Releases (by/via) · Apr 10, 2024 · release-notes, nodejs
338. Node.js Secure Coding: Mitigate and Weaponize Code Injection Vulnerabilities (by) · Apr 8, 2024 · books, nodejs, vulnerabilities
339. The Free Software Commons (by) · Apr 5, 2024 · foss, community
340. The V8 Sandbox (by/via) · Apr 4, 2024 · v8
341. Wednesday, April 3, 2024 Security Releases (via) · Apr 3, 2024 · release-notes, nodejs
342. Using JSON Web Tokens With Node.js (by/via) · Apr 3, 2024 · json-web-tokens, nodejs, authentication
343. Building a Digital Fortress: How to Strengthen DNS Against DDoS Attacks? (via) · Apr 3, 2024 · dns
344. In-App Browsers Are Still a Privacy, Security, and Choice Problem (by/via) · Mar 27, 2024 · browsers, mobile, privacy
345. How npm Install Scripts Can Be Weaponized: A Real-World Example of a Harmful npm Package (by/via) · Mar 3, 2024 · npm, dependencies, examples
346. Preventing SQL Injection Attacks in Node.js (via) · Feb 20, 2024 · nodejs, databases, sql
347. Wednesday, February 14, 2024 Security Releases (by+/via) · Feb 14, 2024 · release-notes, nodejs
348. How to Boost WordPress Security and Protect Your SEO Ranking (via) · Feb 12, 2024 · how-tos, wordpress, seo
349. Malicious npm Package Masquerades as Noblox.js, Targeting Roblox Users for Data Theft (by/via) · Feb 6, 2024 · npm, dependencies
350. Practice Safe DSD With “setHTMLUnsafe” (It’s Complicated) (by/via) · Jan 31, 2024 · html, dom, shadow-dom, apis
351. Tuesday, February 6, 2024 Security Releases (by/via) · Jan 30, 2024 · release-notes, nodejs
352. JWT vs. Session Authentication (by/via) · Jan 25, 2024 · authentication, json-web-tokens, comparisons
353. GitHub, npm Registry Abused to Host SSH Key-Stealing Malware (via) · Jan 24, 2024 · github, npm, foss
354. Deceptive Deprecation: The Truth About npm Deprecated Packages (by+/via) · Jan 18, 2024 · npm, dependencies, research
355. Safely Accessing the DOM With Angular SSR (by/via) · Jan 17, 2024 · dom, javascript, angular, server-side-rendering
356. Node.js Security Progress Report—Progress on Permission Model, Fuzzer, and Connections With Community (via) · Jan 16, 2024 · nodejs
357. I Hate CORS (by) · Jan 14, 2024 · videos, cors
358. Building Multiple Progressive Web Apps on the Same Domain (by/via) · Jan 4, 2024 · videos, web-apps, progressive-web-apps, architecture
359. Session-Based vs. Token-Based Authentication: Which Is Better? (by) · Dec 23, 2023 · authentication, json-web-tokens, comparisons
360. 10 Best Practices for Secure Code Review of Node.js Code (by) · Dec 20, 2023 · best-practices, code-reviews, nodejs
361. Security Headers Using “<meta>” (by/via) · Dec 7, 2023 · csp, html
362. Blind CSS Exfiltration: Exfiltrate Unknown Web Pages (by/via) · Dec 5, 2023 · css
363. Mastering Cryptography Fundamentals With Node’s “crypto” Module (by) · Nov 11, 2023 · cryptography, nodejs
364. Secure Code Review Tips to Defend Against Vulnerable Node.js Code (by) · Nov 8, 2023 · nodejs, code-reviews
365. Understanding CORS (by) · Nov 4, 2023 · cors
366. Secret Scanning Scans Public npm Packages (via) · Oct 26, 2023 · github, npm, dependencies
367. What the !#@% Is a Passkey? (by/via) · Oct 26, 2023 · passkeys
368. Local HTTPS for Next.js 13.5 (by) · Oct 10, 2023 · testing, http, nextjs
369. Understanding XSS Attacks (by/via) · Oct 5, 2023
370. A Comprehensive Guide to the Dangers of Regular Expressions in JavaScript (by/via) · Sep 28, 2023 · guides, javascript, regex
371. SSH Keys Stolen by Stream of Malicious PyPI and npm Packages (by/via) · Sep 27, 2023 · ssh, dependencies, npm
372. Best Practices for Securing Node.js Applications in Production (by+/via) · Sep 27, 2023 · best-practices, nodejs
373. npm Provenance General Availability (via) · Sep 26, 2023 · github, npm, provenance
374. The WebP 0-Day (by) · Sep 21, 2023 · webp, google, apple
375. Open Source Trends to Look for in 2024 (via) · Sep 21, 2023 · foss, trends, visions, ai
376. Securing Your Node.js Apps by Analyzing Real-World Command Injection Examples (by) · Sep 15, 2023 · nodejs, history, examples
377. How to Implement SSL/TLS Pinning in Node.js (via) · Aug 29, 2023 · how-tos, ssl, tls, nodejs
378. A More Intelligent and Secure Web (by/via) · Aug 24, 2023 · videos, w3c, standards, web, web-platform
379. Demystifying CORS: Understanding How Cross-Origin Resource Sharing Works · Aug 18, 2023 · cors, javascript
380. Towards HTTPS by Default (by/via) · Aug 16, 2023 · browsers, google, chrome, http, tls
381. Sophisticated, Highly-Targeted Attacks Continue to Plague npm (via) · Aug 12, 2023 · npm
382. An Update on Chrome Security Updates—Shipping Security Fixes to You Faster (via) · Aug 8, 2023 · browsers, google, chrome
383. Tuesday, August 8, 2023 Security Releases (by/via) · Jul 31, 2023 · release-notes, nodejs
384. Publishing With npm Provenance From Private Source Repositories Is No Longer Supported (via) · Jul 26, 2023 · github, npm, provenance, foss
385. Social Engineering Campaign Targeting Tech Employees Spreading Through npm Malware (via) · Jul 25, 2023 · npm
386. Securing the Web Forward: Addressing Developer Concerns in Web Security (by/via) · Jul 24, 2023 · web, surveys
387. User Input Sanitization and Validation: Securing Your App (by) · Jul 19, 2023 · sanitization, validation, conformance
388. Encoding: A Brief History and Its Role in Cybersecurity (by/via) · Jul 19, 2023 · encoding, unicode, history
389. Node.js Security Progress Report—17 Reports Closed (via) · Jul 17, 2023 · nodejs
390. The Importance of Verifying Webhook Signatures (via) · Jun 29, 2023 · webhooks
391. The Massive Bug at the Heart of the npm Ecosystem (by/via) · Jun 27, 2023 · npm, dependencies
392. Understanding Authorization Before Authentication: Enhancing Web API Security (by/via) · Jun 23, 2023 · authorization, authentication, apis, comparisons
393. An Introduction to Command Injection Vulnerabilities in Node.js and JavaScript (by) · Jun 23, 2023 · introductions, vulnerabilities, nodejs, javascript
394. All You Need to Know About CORS and CORS Errors (by/via) · Jun 23, 2023 · cors, errors
395. Django: A Security Improvement Coming to “format_html()” (by) · Jun 15, 2023 · django, html
396. Tuesday, June 20, 2023 Security Releases (by/via) · Jun 13, 2023 · release-notes, nodejs
397. security.txt Now Mandatory for Dutch Government Websites · May 31, 2023 · legal
398. File Upload Security and Malware Protection (by) · May 23, 2023 · file-handling, edge-computing
399. Security Implications of HTTP Response Headers (via) · May 3, 2023 · http, http-headers
400. Introducing npm Package Provenance (by+/via) · Apr 19, 2023 · introductions, github, npm, provenance, foss
401. Generating Provenance Statements (by/via) · Apr 19, 2023 · npm, provenance
402. 8 Best Tools for Cryptography and Encryption (via) · Apr 18, 2023 · link-lists, tooling, comparisons, cryptography, privacy
403. Dissecting npm Malware: Five Packages and Their Evil Install Scripts (by/via) · Apr 15, 2023 · npm
404. Passkeys: What the Heck and Why? (by/via) · Apr 12, 2023 · passkeys
405. Cryptographically Protecting Your SPA (by) · Mar 17, 2023 · single-page-apps, cryptography
406. Without Accessibility, There Is No Privacy or Security (via) · Feb 28, 2023 · accessibility, privacy
407. How to Password-Protect a Static HTML Page With No JS (by) · Feb 20, 2023 · how-tos, css, fonts
408. Quick Tip: How to Hash a Password in PHP (by/via) · Feb 14, 2023 · how-tos, php, passwords, tips-and-tricks
409. Sandboxing JavaScript Code (by) · Feb 12, 2023 · javascript
410. Unlocking Security Updates for Transitive Dependencies With npm (by/via) · Jan 19, 2023 · npm, dependencies, maintenance
411. Conditional API Responses for JavaScript vs. HTML Forms (by) · Jan 3, 2023 · javascript, html, forms, comparisons
412. Why Do We Need Authorization and Authentication? · Dec 30, 2022 · authorization, authentication
413. The Top 10 Security Vulnerabilities for Web Applications (by/via) · Dec 20, 2022 · vulnerabilities, web-apps
414. Leaked a Secret? Check Your GitHub Alerts… for Free (via) · Dec 15, 2022 · github
415. DOM Clobbering (by/via) · Dec 12, 2022 · dom
416. New npm Features for Secure Publishing and Safe Consumption (by/via) · Dec 6, 2022 · npm, dependencies
417. Using SRI to Protect From Malicious JavaScript (by/via) · Dec 3, 2022 · javascript
418. WordPress Versions 3.7–4.0 No Longer Get Security Updates (by/via) · Nov 30, 2022 · wordpress
419. “Not Secure” Warning for IE Mode (by) · Nov 16, 2022 · browsers, microsoft, edge, internet-explorer
420. Node.js Security Best Practices (via) · Nov 10, 2022 · nodejs, best-practices
421. npm Security: Preventing Supply Chain Attacks (by/via) · Nov 7, 2022 · npm, dependencies
422. Secure JavaScript URL Validation (by/via) · Oct 17, 2022 · javascript, validation, urls
423. Create a Passkey for Passwordless Logins (by/via) · Oct 12, 2022 · authentication, passkeys
424. Designing a Secure API (by/via) · Oct 4, 2022 · software-design, apis
425. Phylum Detects Active Typosquatting Campaign Targeting npm Developers (via) · Oct 2, 2022 · npm, dependencies
426. Security (by+/via) · Sep 26, 2022 · web-almanac, studies, research, metrics
427. Continue Using .env Files as Usual (by) · Sep 24, 2022 · environments
428. Quick Reminder: HTML5 “required” and “pattern” Are Not a Security Feature (by) · Sep 22, 2022 · html, forms
429. Stop Using .env Files Now (by) · Sep 19, 2022 · environments
430. Debunking Myths About HTTPS · Sep 18, 2022 · http, myths
431. Secure Your Node.js App With JSON Web Tokens (by/via) · Sep 14, 2022 · nodejs, json-web-tokens
432. Dependabot Unlocks Transitive Dependencies for npm Projects (via) · Sep 7, 2022 · dependencies, npm
433. JavaScript Bugs Aplenty in Node.js Ecosystem—Found Automatically (by/via) · Aug 30, 2022 · studies, research, nodejs, javascript, dependencies, quality
434. Introducing Even More Security Enhancements to npm (by+/via) · Jul 26, 2022 · introductions, npm
435. Top 5 npm Vulnerability Scanners (via) · Jul 20, 2022 · npm, vulnerabilities, tooling
436. What Is Passwordless Authentication and How to Implement It (by/via) · Jul 18, 2022 · authentication, passwords
437. GA4 Is Being Blocked by Content Security Policy (by) · Jun 25, 2022 · csp, metrics, google
438. Please Remove That .git Folder · Jun 22, 2022 · git
439. Should I Have Separate GitHub Accounts for Personal and Professional Projects? (via) · Jun 14, 2022 · discussions, github, career
440. Understanding CSRF Attacks (by) · May 29, 2022
441. npm Security Update: Attack Campaign Using Stolen OAuth Tokens (by/via) · May 26, 2022 · oauth, version-control, npm, github
442. Snyk Finds 200+ Malicious npm Packages, Including Cobalt Strike Dependency Confusion Attacks (by/via) · May 24, 2022 · javascript, npm, dependencies
443. Unexpectedly HTTPS? (by) · May 16, 2022 · http
444. How to Respond to Growing Supply Chain Security Risks? (by) · Apr 3, 2022 · how-tos, dependencies, nodejs, npm
445. The Web Is for Everyone: Our Vision for the Evolution of the Web (by+/via) · Mar 23, 2022 · web, visions, privacy, accessibility, performance, user-experience
446. Using HTTPS in Your Development Environment (by/via) · Mar 7, 2022 · http, environments
447. How to Prevent SQL Injection Attacks in Node.js (by/via) · Mar 3, 2022 · how-tos, nodejs, databases, sql
448. How to Fix Your Security Vulnerabilities With npm Override (via) · Feb 23, 2022 · how-tos, vulnerabilities, npm, dependencies
449. Can You Get Pwned With CSS? (by) · Feb 23, 2022 · css
450. Never, Ever, Ever Use Pixelation for Redacting Text (by/via) · Feb 15, 2022 · content, images, obfuscation
451. Accessibly Insecure (by/via) · Jan 31, 2022 · accessibility
452. Lessons Learned From Publishing a Content Security Policy (via) · Dec 14, 2021 · lessons, csp
453. CSS Fingerprinting (by) · Dec 5, 2021 · websites, css, privacy
454. Ain’t No Party Like a Third Party (by/via) · Dec 3, 2021 · dependencies, embed-code
455. Security (by+/via) · Dec 1, 2021 · web-almanac, studies, research, metrics
456. GitHub’s Commitment to npm Ecosystem Security (by/via) · Nov 15, 2021 · github, npm
457. Understanding and Implementing OAuth2 in Node.js (by/via) · Oct 18, 2021 · nodejs, authorization, oauth
458. How to Win at CORS (by) · Oct 12, 2021 · how-tos, cors, html, http
459. The Options for Password-Revealing Inputs (by/via) · Oct 6, 2021 · html, css, passwords, usability
460. npm Security Best Practices (by/via) · Aug 3, 2021 · npm, best-practices
461. Encoding Data for POST Requests (by) · Jun 30, 2021 · javascript, encoding
462. NPM Global Audit · Jun 16, 2021 · packages, npm, quality, auditing
463. Understanding and Preventing Common Security Vulnerabilities (via) · Jun 15, 2021 · vulnerabilities
464. Open Source Insights (via) · Jun 3, 2021 · websites, foss, dependencies, licensing
465. TLS and mTLS Demystified · Dec 9, 2020 · tls, protocols
466. Is Edge Computing Secure? Here Are 4 Security Risks to Be Aware Of (via) · Dec 9, 2020 · edge-computing
467. Best Practices for Inclusive Textual Websites (by) · Nov 23, 2020 · performance, accessibility, best-practices
468. What Is mTLS and How Does It Work? (by) · Apr 30, 2020
469. Mutual TLS: Stuff You Should Know (by/via) · Mar 19, 2020 · tls, protocols
470. Don’t Try to Sanitize Input—Escape Output (by) · Feb 27, 2020 · sanitization, escaping
471. How to Automatically Update Your JavaScript Dependencies (by/via) · Jan 30, 2020 · how-tos, javascript, dependencies, automation, processes
472. Usability and Security; Better Together (via) · Dec 22, 2019 · usability, user-experience
473. Understanding Subresource Integrity (by/via) · Apr 9, 2019 · embed-code
474. Guide to Web Authentication (by) · Jan 24, 2019 · websites, authentication, javascript
475. It’s Beginning to Look a Lot Like XSSmas (by/via) · Dec 17, 2018 · vulnerabilities
476. Protecting Your Site With Feature Policy (by/via) · Dec 12, 2018 · http-headers, http
477. AWS Security Guide: 7 Best Practices to Avoid Security Risks (via) · Oct 31, 2018 · guides, aws, best-practices
478. WordPress Security as a Process (by/via) · Jun 21, 2018 · wordpress, processes
479. Making Your Website Faster and Safer With Cloudflare (by/via) · Jun 12, 2018 · performance, caching, cloudflare
480. Creating Secure Password Resets With JSON Web Tokens (by/via) · Nov 9, 2017 · passwords, json-web-tokens, nodejs
481. The Complete Guide to Switching From HTTP to HTTPS (via) · Jun 12, 2017 · guides, http
482. How (Not) to Control Your CDN (by) · Jun 7, 2017 · content-delivery, caching, http
483. How to Secure WordPress With SSL (by/via) · May 10, 2017 · how-tos, wordpress, ssl
484. How to Secure Your Web App With HTTP Headers (by/via) · Apr 3, 2017 · how-tos, web-apps, http, http-headers, csp
485. Using SSH Securely (by) · Jan 24, 2017 · ssh
486. Content Security Policy Level 2 (by+/via) · Dec 15, 2016 · standards, csp
487. Content Security Policy, Your Future Best Friend (by/via) · Sep 12, 2016 · csp, link-lists
488. A Refined Content Security Policy (via) · Aug 5, 2016 · html, csp, webkit, safari, apple, browsers
489. Web Platform Security Boundaries (by) · Jun 24, 2016 · web-platform
490. Distribution Packages Considered Insecure · Feb 13, 2016 · dependencies, unix-like
491. Eliminating Known Vulnerabilities With Snyk (by/via) · Jan 13, 2016 · vulnerabilities, tooling
492. 10 Web Predictions for 2016 (by/via) · Jan 6, 2016 · web, visions, site-generators, browsers, css, mobile, performance, webassembly, seo
493. An in-Depth Look at CORS (by/via) · Dec 17, 2015 · cors, javascript, php
494. Why Passwordless Authentication Works (by/via) · Nov 10, 2015 · authentication, passwords
495. A Simple Developer Error Is Exposing Private Information on Thousands of Websites (by/via) · Jul 27, 2015 · version-control, git, mistakes, vulnerabilities
496. More Tips to Further Secure WordPress (by/via) · Jul 9, 2015 · wordpress, tips-and-tricks, plugins
497. Improving Web Security With the Content Security Policy (by/via) · Jun 24, 2015 · csp, http
498. What Are the Security Risks of HTML5 Apps? (by/via) · Mar 18, 2015 · web-apps, sanitization
499. Same-Origin Policy (by) · Feb 23, 2015 · cors, web-platform
500. We Should All Have Something to Hide (by) · Jun 12, 2013 · privacy
501. Mobile Website Security (by/via) · May 14, 2013 · mobile, hosting, policies
502. WordPress Security Tips (by/via) · Apr 17, 2013 · wordpress, tips-and-tricks
503. Bulletproof Your Drupal Website (via) · Jan 21, 2013 · drupal
504. Top 10 PHP Security Vulnerabilities (via) · Oct 15, 2012 · php, vulnerabilities
505. A Front End Engineer’s Manifesto (by) · Aug 24, 2012 · websites, manifestos, user-experience, progressive-enhancement, simplicity, foss, accessibility, community, learning
506. A JavaScript Security Flaw (by) · Aug 9, 2012 · javascript
507. The Secure Programmer’s Pledge · Jul 16, 2012 · manifestos
508. An Introduction to Content Security Policy (by/via) · Jun 15, 2012 · introductions, csp
509. Cross-Site Scripting Attacks (XSS) (by/via) · Apr 30, 2012 · examples
510. How to Secure Your WordPress Website (by/via) · Nov 10, 2011 · how-tos, wordpress, link-lists
511. Using CORS (by/via) · Oct 26, 2011 · cors
512. Web Cryptography: Salted Hash and Other Tasty Dishes (by/via) · Feb 22, 2011 · cryptography
513. 10 Useful WordPress Security Tweaks (by/via) · Jul 1, 2010 · wordpress
514. Web Security: Are You Part of the Problem? (by/via) · Jan 14, 2010 · vulnerabilities, php, javascript
515. JavaScript Security Experiments (by) · Feb 7, 2007 · javascript, experiments
516. DOM vs. Web (by) · Apr 20, 2006 · http, dom
517. Top 7 PHP Security Blunders (via) · Dec 21, 2005 · php, databases, sql
518. Validate Your Input! (via) · May 9, 2005 · validation
519. JavaScript Security · Oct 4, 2004 · javascript
520. File Upload Security (by) · Sep 8, 2004 · html, file-handling
521. Spot the Security Hole (by/via) · Jul 3, 2004 · php
522. JavaScript and Security (by/via) · Apr 19, 2004 · javascript
523. Handling Content From Strangers (by/via) · Mar 26, 2004 · content
524. Getting Started With XML Security (by/via) · Nov 28, 2002 · introductions, xml
525. Site and Origin Comparer (via) · tools, analysis, comparisons
526. Malware and Security Scanner (via) · tools, analysis
527. Email Blacklist Checker (via) · tools, analysis, email
528. Domain or IP Spam Checker (via) · tools, analysis, domains
529. DNSSEC Checker (via) · tools, analysis, dns
530. Cross-Site WebSocket Hijacking Tester (by) · tools, analysis
531. Cookie Use Checker (via) · tools, analysis, cookies
532. Content Security Policy Validator (Google) (via) · tools, analysis, csp, conformance
533. Content Security Policy Validator (CSP Validator) (by) · tools, analysis, csp, conformance
534. Abuse Contact Lookup (via) · tools, analysis, policies
535. Server Port Scanner (via) · tools, analysis, network, servers
536. Website Experience Analyzer · tools, analysis, performance, user-experience

• Page 1
• 2
• All topics
• All entries
• RSS feed (“security” only)