Collaborate Disseminate
I understand that a header like X-Powered-By can reveal details about the operating environment that can be used to find known vulnerabilities because you often get the language and compiler/interpreter/operating environment versions.
With… Continue reading Verbose Headers/Information Leakage via HttpResponse Headers vs fingerprinting via named headers
I am aware that I can get the fingerprint of an x509 certificate by typing
openssl x509 -in certificate.crt -noout -fingerprint
But if I try to get the fingerprint of a CSR (openssl req -in certrequest.csr -fingerprint) I get
req: Unrecog… Continue reading Getting fingerprint of certificate signing request
I have set it up so that when my users change their password, the salt is recomputed.
Besides hiding the fact that they may change their password to the same thing (I am checking that by first hashing their new pwd with the old salt) it do… Continue reading Does recalculating per-user salt every time a user changes password make any difference?
I am currently implementing new auth schemes for a site, and decided to implement an "I forgot my password" email looking at this guide for inspiration.
My Flow
The flow I have designed is as follows (three phases):
Saving the e… Continue reading Password Recovery email – secure enough?
I am trying to guess a password for a sipura box i’ve had lying about (the password i wrote on the unit doesn’t work or I can’t read it) I read that nmap –script http-brute -p 80 <ip address> should do the trick, but I… Continue reading supplying username for http-brute [on hold]