Quote:

TCP is a byte stream, the whole byte stream and nothing but the byte stream

Another Quote:

if all packets reach Client, there isn’t that much difference between TCP and UDP

Quote:

Yes, you DO need to encrypt your UDP traffic. And no, using UDP is NOT a valid excuse to skip encryption

Another Quote:

Personally, I prefer to think of it as of insurance - when I'm paying my premiums in hope that my money will go to waste.

Quote:

Doing sanitization at IDL level automates quite a bit of tedious-and-error-prone work, which is always a Good Thing™

Another Quote:

Hey, this whole thing can be made MUCH simpler, the only thing we need to acknowledge is that the best identifier for a string is the string itself!

Abstract:

Password hashing is a Big Headache, and doing it right is complicated

Quote:

Note that none of the C++11 random number engines (LCG, Mersenne-Twister, or Lagged Fibonacci) can be considered good enough for cryptographic purposes – in short, they’re way too predictable and can be broken by a determined attacker, given enough output has leaked.