Category
Book: D&D of MOGs
On.System Architecture
On.Programming
On.Hardware
On.Security
On.Development
Other
IT Hare School
Much Ado About Hare
On.Security
Avoiding ugly afterthoughts. Part b. Coding for Security, Coding for i18n, Testing as a Part of Development
April 4, 2016 by • “No Bugs” Bunny
Quote:
Doing sanitization at IDL level automates quite a bit of tedious-and-error-prone work, which is always a Good Thing™
Another Quote:
Hey, this whole thing can be made MUCH simpler, the only thing we need to acknowledge is that the best identifier for a string is the string itself!
Filed under: Book: D&D of MOGs1st beta of Vol. IV-VIOn.ProgrammingDebuggingOn.SecurityBest Practices
Read morePassword Hashing: Why and How
March 7, 2016 by • “No Bugs” Bunny
Abstract:
Password hashing is a Big Headache, and doing it right is complicated
Quote:
Note that none of the C++11 random number engines (LCG, Mersenne-Twister, or Lagged Fibonacci) can be considered good enough for cryptographic purposes – in short, they’re way too predictable and can be broken by a determined attacker, given enough output has leaked.
Filed under: On.SecurityBest Practices
Read more
Six Impossible Things Before Breakfast Ltd. © 2026. All rights reserved.
