Palisade Magazine
 
PHP Security - Securing the environment

January 2006

PHP Security - Securing the environment

by Nilesh Chaudhari, CISSP

We are starting a new in-depth article series where we will be covering practical suggestions on improving security in applications and securely coding in various programming languages. In this first article we will cover the environment around PHP.… more →

Implementing Password Recovery

by Deepu Thomas Philip

Password recovery is a process which becomes necessary when a genuine application user is unable to authenticate due to lost or forgotten passwords. We look at the various challenges in a secure password recovery implementation.… more →

Two Factor Authentication

by Anoop Mangla

Passwords, which are so widely used by applications to authenticate users, are just so easy to be guessed, cracked, stolen or compromised. However, teamed with a second factor, they can reduce the chances of an attacker significantly… more →

QuizQuiz: Best Practices in Dot Net applications

Which of the following is/are best practices for logout in .net applications?

  1. Using FormsAuthentication.SignOut method
  2. Set the requireSSL attribute for the AuthCookie
  3. Set the HttpOnly cookies attribute for the AuthCookie
  4. Implement Short Timeout for the AuthCookie
  5. All of the above

more →

Review: Programming .NET Components, 2nd Edition

by Juval Lowy

Its component based approach is one reason Microsoft .NET is so widely used - and there are a number of books on this topic. But none explain the concepts in such easy and clear language as Juval Lowy’s Programming .Net Components. Now in its second edition, this book has earned the reputation of a classic.… more →

On the blog recently

Past quizzes

  • May '07 : Which of these is not a recommended best practice for implementing CAPTCHAs?
  • Jul '05 :
  • Jul '04 : What is the cryptographic technique to use for transmitting passwords during authentication?
  • Oct '04 : How can an application ensure that its pages are not cached or left on the client after a user has logged out?
  • Dec '05 : What’s the best strategy to validate the inputs in our application?

Search this website

 Search website

Stay Informed

Want to know when the new issues are out? Just fill in your details, we will take care of notifying you when new issues are released:




Subscribe  Unsubscribe

Write to Us

All flowers, brickbats and suggestions are welcome. You can put in yours on the feedback page.

News & Events

  • 20.02.07. Paladion conducts Operational Risk Management Conference in Dubai, Bahrain
  • 27.11.06. Paladion enables ORC achieve ISO 27001:2005
  • 10.11.06. Deloitte’s Asia Pacific Technology Fast 500 calls Paladion/Plynt one of the fastest growing technology companies.
  • 10.11.06. Paladion/Plynt ranked among the fastest growing 50 technology companies in India by Deloitte.
  • 01.08.06. Rajat speaks on the current state of security in Financial firms outsourcing to India