Sign in
The What, Why and How of Software Security
Translate This Page
Translate this page
Powered by
Microsoft® Translator
Options
About
Email Blog Author
RSS for posts
Atom
RSS for comments
OK
Search
Tags
Authorization
Catch the security flaw
Cryptography
Least Priv
Security Conference/ Workshop
Security Tool
Archive
Archives
June 2009
(1)
April 2009
(1)
February 2009
(1)
December 2008
(3)
November 2008
(1)
August 2008
(1)
July 2008
(2)
June 2008
(1)
March 2008
(1)
February 2008
(1)
January 2008
(2)
December 2007
(1)
November 2007
(3)
October 2007
(2)
September 2007
(2)
August 2007
(1)
Posts
Subscribe via RSS
Sort by:
Most Recent
|
Most Views
|
Most Comments
Excerpt View
|
Full Post View
The What, Why and How of Software Security
Catch the security flaw #1
Posted
over 5 years ago
by
Varun Sharma
4
Comments
I will be from time to time, putting up flawed code as an open question on this blog. Those who can catch the flaw please do post about it in the comments section (preferably with the repro steps). After a few days, I will post the flaw and its countermeasure...
The What, Why and How of Software Security
Common Authorization flaw in Web Applications: Why disabling buttons (or other controls) is not enough?
Posted
over 5 years ago
by
Varun Sharma
2
Comments
I have seen quite a few web applications that rely on disabling controls for authorization. Consider this code:- The scenario may be that the page has to be displayed in a read-only manner for certain roles, or after submission of some details but...
Page 1 of 1 (2 items)