Verified by Visa Confirmed Dangerous

February 2, 2010by Matthew Skelton (@matthewpskelton) Leave a comment

New research from the University of Cambridge supports the view that Verified by Visa is deeply flawed and unsafe. I first came across this mess of an implementation a while […]

Read Article →

How to encrypt passwords in the Tomcat server.xml file

July 22, 2009by Matthew Skelton (@matthewpskelton) 3 Comments

By default, Tomcat stores passwords in server.xml in clear text, which can lead to obvious security lapses. The easiest way to mitigate against user account compromise is to use a […]

Read Article →

Grey Matter Workout

June 1, 2006by Matthew Skelton (@matthewpskelton) Leave a comment

I spent part of today scratching my head and dredging up long-forgotten details of the .Net Framework and C# over at BrainBench.com – to my relief, I didn’t disgrace myself: […]

Read Article →

ACCU Conference 2006

April 24, 2006by Matthew Skelton (@matthewpskelton) Leave a comment

I went to the ACCU Spring Conference 2006 last week. There were some interesting sessions, as usual. XSLT2 and XPath2 Version 1 of XSLT and XPath were fairly limited in […]

Read Article →

Secunia

March 17, 2006by Matthew Skelton (@matthewpskelton) Leave a comment

Secunia is an excellent site, listing outstanding and historic vulns for all major (and many minor) software products. For exmaple, compare security flaws for DotNetNuke with the flaws for PHP-Nuke. […]

Read Article →

Matthew Skelton

software systems engineering

Category Archives: Security

Verified by Visa Confirmed Dangerous

How to encrypt passwords in the Tomcat server.xml file

Grey Matter Workout

ACCU Conference 2006

Secunia