validation – WindowsTechs.com

Application Validation Methods [closed]

Posted on April 4, 2024 by Vuk Tomasevic

I am currently employed at a financing company operating in both the USA and Canada. My current task involves exploring alternative methods to validate new credit applications.
Presently, we rely on a one-time SMS message for our new custo… Continue reading Application Validation Methods [closed]→

Application Validation Methods [closed]

Posted on April 4, 2024 by Vuk Tomasevic

How to know whether a program is genuine? [closed]

Posted on April 3, 2024 by theonerishi

How can I know whether a program is genuine? The ways I have thought of are checking what the user base has said and knowing the author background. Occasionally my antivirus will flag a webpage as suspicious. Am I on the right lines?

… Continue reading How to know whether a program is genuine? [closed]→

user invite links (tokens) alternate to longer expiry period [closed]

Posted on November 17, 2023 by V T

I’m doing some research on user invite links (tokens) and if we could use a longer expiration period. I am aware that having a shorter expiration period is good security practice. Currently, user invite links are sent and the user has a co… Continue reading user invite links (tokens) alternate to longer expiry period [closed]→

Responsibility and resource allocation for defects or bugs [migrated]

Posted on July 13, 2023 by Charles Owen

I came across this scenario in the workplace and we don’t have great policies. I’m not the one creating the policies either but can have some influence over implementing them.
We are consistently getting more bugs than we anticipate and i… Continue reading Responsibility and resource allocation for defects or bugs [migrated]→

Validate File Uploads in PHP: PDFs and images

Posted on May 9, 2023 by DevelJoe

We’re trying to secure our upload forms in PHP regarding image uploads and PDF files. For this purpose, we’re currently trying to do the following in all cases, according to our research done so far:

Check MIME type
Check file size
Scan c… Continue reading Validate File Uploads in PHP: PDFs and images→

What’s the shortest message you need to claim ownership of another message?

Posted on May 4, 2023 by Boson Bear

Hypothetically, I’d like to demonstrate that I am the owner of a piece of published information. The requirements are the following.

The hash/ characteristic string is compact enough (ideally a few bytes, say 16 or 32.)
It does not expose… Continue reading What’s the shortest message you need to claim ownership of another message?→

When a detection tool fires no alert, how to tell the difference if the environment is safe or just something is wrong with the tool

Posted on November 30, 2022 by n0obiscuitz

For example, if an antivirus gives no alert for a couple of months, how do you confirm if the antivirus is working to prevent viruses, and not just hung?

Continue reading When a detection tool fires no alert, how to tell the difference if the environment is safe or just something is wrong with the tool→

Trying to use xmlsec1 but doesn’t show the CAs used

Posted on November 30, 2022 by aseques

I am trying to validate a xml certificate signed by a entity called Camerfirma, I had to download their DER file and convert it to PEM in order to place it into /etc/ssl/certs/ (with the other authorized CAs). To validate the certifcate I … Continue reading Trying to use xmlsec1 but doesn’t show the CAs used→

Should password strength validation also be run server-side or only client-side?

Posted on September 30, 2022 by RobotoSkunk

Personally, I think that it’s not so important to check the strength of the passwords on server-side, since, if the user evades the validation on the client side, it would be their responsibility to use an insecure password; however, I don… Continue reading Should password strength validation also be run server-side or only client-side?→