Collaborate Disseminate
I’m building a note-taking app, when a user writes a note an id is generated and I redirect them to a page where they can see its content with a URL like /note/DXSt832pS5iLuos6uxBn. What are the security risks of not double-checking that t… Continue reading What are the security risks of only using an id in the url to protect the content?
This message was sent to my websocket:
echo kernel.unprivileged_userns_clone = 1 | sudo tee /etc/sysctl.d/00-local-userns.conf
Is it dangerous, and what would it do?
Thanks for your feedback everyone, chances are it was someone tryin… Continue reading What does enabling kernel.unprivileged_userns_clone do?
It’s a well known fact (in the privacy-aware community, at least), that a factor quite used for tracking is the list of installed fonts, which browsers seem to expose, and trackers exploit this.
There’s lots of questions and… Continue reading Why do browsers expose installed fonts?