http://doboard.com do... Web Application Development and Security Wed, 28 Jul 2010 22:30:22 +0000 en hourly 1 http://wordpress.org/?v=3.0 http://doboard.com/2009/11/24/who-says-php-security-sucks/ http://doboard.com/2009/11/24/who-says-php-security-sucks/#comments Tue, 24 Nov 2009 11:41:05 +0000 Barry http://doboard.com/?p=90 http://doboard.com/2009/11/24/who-says-php-security-sucks/feed/ 0 http://doboard.com/2008/03/26/shmoocon-memories/ http://doboard.com/2008/03/26/shmoocon-memories/#comments Thu, 27 Mar 2008 02:44:45 +0000 Barry http://doboard.com/2008/03/26/shmoocon-memories/ http://doboard.com/2008/03/26/shmoocon-memories/feed/ 1 http://doboard.com/2008/02/08/owasp-february-2008/ http://doboard.com/2008/02/08/owasp-february-2008/#comments Sat, 09 Feb 2008 01:44:52 +0000 Barry http://doboard.com/2008/02/08/owasp-february-2008/ http://doboard.com/2008/02/08/owasp-february-2008/feed/ 0 http://doboard.com/2008/01/31/capsec-january-2008/ http://doboard.com/2008/01/31/capsec-january-2008/#comments Thu, 31 Jan 2008 17:56:39 +0000 Barry http://doboard.com/2008/02/01/capsec-january-2008/ http://doboard.com/2008/01/31/capsec-january-2008/feed/ 0 http://doboard.com/2008/01/21/20-hacker-tricks-for-attacking-web-apps/ http://doboard.com/2008/01/21/20-hacker-tricks-for-attacking-web-apps/#comments Mon, 21 Jan 2008 09:57:37 +0000 Barry http://doboard.com/2008/01/21/20-hacker-tricks-for-attacking-web-apps/ http://doboard.com/2008/01/21/20-hacker-tricks-for-attacking-web-apps/feed/ 1 http://doboard.com/2007/11/12/what-is-security-really/ http://doboard.com/2007/11/12/what-is-security-really/#comments Tue, 13 Nov 2007 01:00:10 +0000 Barry http://doboard.com/2007/11/12/what-is-security-really/ The product vendors would like you to believe that. "Preventing and fixing known security holes like XSS, SQL injection and CSRF." A good web developer might say that. "Efficiently detecting and blocking hacking attempts." Spoken like someone who has been in the trenches. Whack-a-mole at Internet speed. "Complying with security rules and requirements." Smells like bureaucrats. Hopefully the thousands (!) of requirements aren't constantly changing, poorly written, contradictory, or ill-conceived... With more variations than we can count, there has to be a better way to get a handle on security. So what's the bottom line?]]> http://doboard.com/2007/11/12/what-is-security-really/feed/ 0