Click here to Skip to main content

The Insider News

   

The Insider News is for breaking IT and Software development news. Post your news, your alerts and your inside scoops. This is an IT news-only forum - all off-topic, non-news posts will be removed. If you wish to ask a programming question please post it here.

Get The Daily Insider direct to your mailbox every day. Subscribe now!

 
GeneralRe: PHP is the right tool for the job (for all the wrong reasons) PinmemberBrisingr Aerowing7-Mar-13 11:00 
NewsHappy Birthday, Objective-C! PinstaffTerrence Dorsey7-Mar-13 9:01 
NewsTruly Ergonomic Computer Keyboard Review: One Month with the TECK PinstaffTerrence Dorsey7-Mar-13 9:01 
GeneralRe: Truly Ergonomic Computer Keyboard Review: One Month with the TECK PinmemberLloyd Atkinson7-Mar-13 9:14 
NewsAs Intel knocks on ARM's door, what is the future of Windows RT? PinstaffTerrence Dorsey7-Mar-13 9:00 
NewsTwitter API v1 Retired / Creator Abandons Twitterizer PinprotectorAspDotNetDev6-Mar-13 19:59 
NewsCourt rules Kim Dotcom can sue New Zealand spy agency PinmemberJohn Isaiah Carmona6-Mar-13 17:44 
NewsSecurity Code Review Techniques: Cross-Site Scripting Edition PinstaffTerrence Dorsey6-Mar-13 11:20 
Cross-site Scripting remains one of the most common vulnerabilities found during web application security assessments, I can safely say from my experience professionally performing security code review for tens of ASP.NET applications, the average for me has been at least 9 out 10 web applications had one or more cross-site scripting issues. There are several reasons for the prevalence of this beast. While the lack of input validation and output encoding remain the top two reasons to blame for the dominance of cross-site scripting. The developers’ unfamiliarity with the differences between HTML contexts could definitely score the third place in the list of top reasons.
It's not that hard once you know where to look.
GeneralRe: Security Code Review Techniques: Cross-Site Scripting Edition Pinmemberkmoorevs7-Mar-13 5:47 
GeneralRe: Security Code Review Techniques: Cross-Site Scripting Edition PinmemberBrisingr Aerowing8-Mar-13 10:57 
NewsComparing the Impact and XNA gaming frameworks PinstaffTerrence Dorsey6-Mar-13 11:20 
NewsWebKit and the Render Wars PinstaffTerrence Dorsey6-Mar-13 11:19 
NewsUsing bitmap indexes in databases PinstaffTerrence Dorsey6-Mar-13 11:19 
NewsThe A Element Is Broken - HTML's Black Sheep PinstaffTerrence Dorsey6-Mar-13 11:19 
NewsHow two volunteers built the Raspberry Pi’s operating system PinstaffTerrence Dorsey6-Mar-13 10:16 
NewsKids, don’t believe the startup hype: Why you should join a big company first PinstaffTerrence Dorsey6-Mar-13 10:15 
NewsThe History of the Set-Top Box: From Bunny Ears to Apple TV PinstaffTerrence Dorsey6-Mar-13 10:15 
NewsThe secret origins of Google's Chrome OS PinstaffTerrence Dorsey6-Mar-13 10:15 
NewsMicrosoft: An expensive (IE) error PinstaffTerrence Dorsey6-Mar-13 10:14 
NewsThou shalt not Facebook PinmemberKent Sharkey6-Mar-13 8:01 
NewsjQuery 2.0 (beta 2) PinmemberKent Sharkey5-Mar-13 11:06 
GeneralRe: jQuery 2.0 (beta 2) PinprotectorAspDotNetDev5-Mar-13 12:52 
GeneralRe: jQuery 2.0 (beta 2) PinmemberKent Sharkey5-Mar-13 13:01 
GeneralRe: jQuery 2.0 (beta 2) PinmemberDan Neely7-Mar-13 5:33 
NewsConsumer versus Enterprise strategy at Microsoft PinstaffTerrence Dorsey5-Mar-13 11:03 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.


Advertise | Privacy | Mobile
Web04 | 2.8.140415.2 | Last Updated 17 Apr 2014
Copyright © CodeProject, 1999-2014
All Rights Reserved. Terms of Use
Layout: fixed | fluid