Debugging and other nonsense

✕

About computer science, crafting software, and what happens in between

Cross Site Request Forgery

Posted on March 21, 2022

A Cross-Site Forgery Attack forces the user to submit data to another website’s secure area where he has an active session. The user visits a malicious website and clicks on a link or a button. This action sends an HTTP action directed to another website to trigger an event on... [Read More]
Tags:
Webapp + Nginx and SSL in Docker Compose

Posted on March 15, 2022

How to build a very simple web app using Python and Flask, configure Nginx to offload HTTPS, and wire them together with Docker Compose. [Read More]
Tags:
- devops
- python
- flask
- nginx
- docker
- dockercompose
Preventing Buffer Overflows

Posted on March 14, 2022

There are modern techniques to prevent buffer overflows. [Read More]
Tags:
- Cybersecurity
- Buffer Overflow
How to mitigate employees' risk

Posted on March 14, 2022

Companies often underestimate the internal risks. The perimeters are solid, but, on the inside, there is no control, and employees can simply activate malware to cause immense damage. The costs of ransomware attacks more than doubled between 2020 and 2021, aggravated by a complete or partial loss of data (Sophos,... [Read More]
Tags:
- Cybersecurity
- Zero-trust
SQL Injection

Posted on March 14, 2022

The following code is vulnerable to SQL Injection, if the input is unfiltered. [Read More]
Tags:
- Cybersecurity
- SQL Injection