Join our mailing list:
On.Security
Developing secure software is a challenge. Writing really secure software is a real challenge.
Here are the articles which touch different security aspects of software, from “what cipher suites are not to be used with TLS”, to certain more or less novel things under ‘Security Research’ subcategory
War on Clones, Part I. IP-based (non-)Identification. Identifying PCs and Macs
July 11, 2016 by • “No Bugs” Bunny
Quote:
NEVER EVER use IPv4 for long-term bans
Another Quote:
If using MAC addresses to identify devices, you SHOULD gather stats on repeating MAC addresses within your DB
Filed under: On.SecurityFraud PreventionOn.ProgrammingNetwork Programming
Read moreEven Bigger Brother, or Governments using Social Engineering to Circumvent Crypto
July 4, 2016 by • “No Bugs” Bunny
Quote:
Unless our Joe Average is a security specialist, he’ll install the certificate for sure
Another Quote:
On the other hand, it is Very Clear that such a system IS a wet dream of a pretty much ANY government out there.
Filed under: On.SecurityResearch
Logins and Passwords
June 27, 2016 by • “No Bugs” Bunny
Quote:
I STRONGLY recommend to provide an option for your players to use 3rd-party “social logins
Another Quote:
you can be sure that as soon as your game is alive and kicking - you'll need to implement password recovery for your players.
Filed under: On.SecurityBest PracticesBook: D&D of MOGs1st beta of Vol. IV-VI
Read moreRandom Number Generation
June 21, 2016 by • “No Bugs” Bunny
Quote:
even if your RNG is statistically perfect, people will still complain🙁
Another Quote:
On modern x86 CPUs, single core can generate 150M+ random bytes/second this way (and this is a Damn Lot).
Filed under: On.SecurityBest PracticesOn.ProgrammingTips and Tricks
Read more
Six Impossible Things Before Breakfast Ltd. © 2026. All rights reserved.
