|
According to the Documentation using the django.views.static.server() function is:
inefficient and insecure.
I understand why it's inefficient, but in which aspect is it insecure ?
Started by Kenny M. on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
It's as insecure as the Django test server itself, for starters, like the above answer said.
It would be insecure to use a non-tested webserver.
And it is not tested for this purpose too.
|
|
I am looking to find out why strncpy is considered insecure. Does anybody have any sort of documentation on this or examples of an exploit using it?
Started by stimms on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
C/C++ by Jeffrey Richter, it has a very good explanation on this and other insecure methods.
|
|
I am looking for a very insecure ASP.NET application. Ideally i'm looking for an application that was written by a noob who has made a lot of security mistakes. If the app has a MS-SQL back-end that would be a bonus. I know of two cool projects for PHP...
Started by The Rook on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
I can't tell you who it is though, because they're a real business and I... .
There's a business near where I live, and I refuse to join their loyalty program because I accidentally stumbled across a SQL injection vulnerability on their site .
I know one...
|
Ask your Facebook Friends
|
Python problem: When I am trying to load sth I dumped using cPickle, I get the error message:
ValueError: insecure string pickle
Both the dumping and loading work are done on the same computer, thus same OS: ubuntu 8.04.
How could I solve this problem...
Started by Peter Long on
, 5 posts
by 5 people.
Answer Snippets (Read the full thread at stackoverflow):
The error is raised if a....
Peter Otten says:
A corrupted pickle.
NB does this site email me notifications of updates?
Check this thread .
Paste up demo code showing where the error occurs and how you're trying to implement it and I'll be happy to help .
|
|
I have a web application which works perfectly fine on my own machines, perfectly fine on my customer's PCs but on their customers machines each page they visit they get a prompt for the Mixed Content coming up.
However it doesn't matter whether they ...
Answer Snippets (Read the full thread at stackoverflow):
|
|
I understand that strlcpy and strlcat were designed as secure replacements for strncpy and strncat, however some people are still of the opinion that they are insecure, and simply cause a different type of problem.
http://en.wikipedia.org/wiki/Strlcpy...
Started by Anonymous on
, 7 posts
by 7 people.
Answer Snippets (Read the full thread at stackoverflow):
Null....
Strncpy is a function that has no relation to C-strings (i.e .
These two functions are totally unrelated.
Firstly, strlcpy has never been intended as a secure version of strncpy (and strncpy has never been intended as a secure version of strcpy ) .
|
|
As a developer, I've learned that I usually gain a better understanding of best/worst practices through experience. The area of web application security isn't really somewhere where my organization can afford to let developers learn through trial and ...
Started by Phil Laliberte on
, 6 posts
by 6 people.
Answer Snippets (Read the full thread at stackoverflow):
I'm reminded of this OSCON talk....
Found it: The name is hackthissite.org.
Will edit as I find it.
I'm googling around for it.
I can't remember its name.
There was a website that was built to have insecurities in it, and the object was to hack it.
|
|
I considered using tmpnam to set the output file name of a QPrinter . But the Python documentation recommends against using it.
os.tmpnam() Return a unique path name that is reasonable for creating a temporary file. ... Applications are responsible for...
Started by Georg on
, 3 posts
by 3 people.
Answer Snippets (Read the full thread at stackoverflow):
Depending on how your QPrinter deals with a file that already exists, you could use QTemporaryFile to create a file, then close the file and keep the reference to the QTemporaryFile... .
Please read http://docs.python.org/library/tempfile.html
Use that instead.
|
|
Do you believe that people who brag are insecure? If that is the case why do white boys tend to brag?
Started by Ren on
, 12 posts
by 12 people.
Answer Snippets (Read the full thread at yahoo):
People....
A good way to tell if anybody is insecure or certain other things.
Not a good judgement to tell if they bragged.
I mean, I know everyone hates white be and they can't be .
Am arrogant.
I brag and no, far from insecure.
Yeah for sure.
|
|
Hi,
I just installed google chrome and realized that there was an option to migrate all my passwords from firefox. Surprisingly it actually did migrate all of my passwords seamlessly.
So here's my question: if chrome can do it, why couldn't any other ...
Started by michal kralik on
, 6 posts
by 6 people.
Answer Snippets (Read the full thread at stackoverflow):
Skizz.
No, it's not insecure as such, because a program that can access the master password you're still insecure from "over-the-shoulder" attacks.
Passwords > Show Passwords).
|
