security

Security implications for gallery support in Drupal Publisher

Thu, 02/10/2008 - 15:58 — Chris Charabaruk

Coming up for SPU, Drupal Publisher, and the Imgblog module is support for galleries, as implemented by the Image Gallery module. This will make use of the blogid parameter in spu.newImage (it’s not just there to look pretty in the specs).

CACert, the free certificate authority, needs your lovin'

Tue, 09/09/2008 - 22:03 — Chris Charabaruk

Image via Wikipedia

Have you heard of CACert? It’s a certificate authority, one which is free and uses a web of trust model to verify the identity of its clients, as opposed to notaries, lawyers, credit checks, and such. It’s also free. I signed up for CACert quite some time ago, in order to get a code signing certificate (for Authenticode and document macros).

Mods as security holes?

Sat, 07/07/2007 - 01:40 — Chris Charabaruk

The irrepressible Raymond Chen recently mused about "security holes" that aren't &endash; that is to say, features which may be misused but don't actually cause security vulnerabilities. While Raymond's blog is always worth reading, this is more about something from one of the comments on this entry. Commenter Erzengel mused that "impersonating a plugin could be an initial delivery system" for malware.

coldacid dot net
Making the internet cooler, one bit at a time.

Latest comments

Security implications for gallery support in Drupal Publisher

CACert, the free certificate authority, needs your lovin'

Mods as security holes?

Twitter

coldacid dot netMaking the internet cooler, one bit at a time.

Latest comments

security

Security implications for gallery support in Drupal Publisher

CACert, the free certificate authority, needs your lovin'

Mods as security holes?

Twitter

coldacid dot net
Making the internet cooler, one bit at a time.