Best Security / Vulnerability Testing Firms for Web Apps?
Original post provide by Slashdot: ITAn anonymous reader writes “I’m in charge of a web application that must be extremely secure. Users will be submitting highly sensitive information to each other using the site. Security must be world-class. We believe we’ve built site in such a way that minimizes security risks and we’ve implemented numerous policies and procedures company-wide to increase security. We’d like a third-party to perform exhaustive and ongoing security tests: automated tests, application testing, and more, to check for things like cross-site scripting issues, server misconfigurations, form/hidden field manipulation, command injection, cookie poisoning, known platform vulnerabilities, etc. What companies would Slashdot readers recommend for these types of services?”
Read more of this story at Slashdot.
Cisco Mulls Adding Verbal Interview To CCIE Exams
Cisco confirmed that it is running a pilot in its exam lab in Beijing, China that involves candidates taking a 10-minute verbal interview as part of their lab exam. Cisco said that if the pilot is successful, the interview could be introduced as a requirement for CCIE Routing & Switching candidates worldwide.
Cisco Mulls Adding Verbal Interview To CCIE Exams
Cisco confirmed that it is running a pilot in its exam lab in Beijing, China that involves candidates taking a 10-minute verbal interview as part of their lab exam. Cisco said that if the pilot is successful, the interview could be introduced as a requirement for CCIE Routing & Switching candidates worldwide.
Htaccess_advanced
Package: htaccess_advanced Summary: Manage Apache htaccess and htpasswd files Groups: Configuration Author: seiffs dark Description: This class can be used to manage Apache Web server htaccess and htpasswd files. It is an enhanced version of the htaccess class originally written by Sven Wagener.
PHP Mime Type Class
If the finfo extension is available it uses it to determine the MIME type of a given file. If the finfo extension is not available, the class extracts the file name extension and looks up in an array that associates file name extensions to MIME types.
State Dept E-mail Crash After "Reply-All" Storm
twistah writes "It seems that a recent 'reply-all storm' at the State Department caused the entire e-mail infrastructure to crash. A notice sent to all State Department employees warned of disciplinary actions which will be taken if users "reply-all" to lists with a large amount of users.
More Articles:
Storm Worm Botnet "Cracked Wide Open"
Quite the reverse, for in theory it can be rapidly eliminated using software developed and at least partially disclosed by Georg Wicherski, Tillmann Werner, Felix Leder and Mark Schlösser. However it seems in practice the elimination process would fall foul of the law.'Read more of this story at Slashdot.
Storm Worm Botnet "Cracked Wide Open"
Heise Security reports that a 'team of researchers from Bonn University and RWTH Aachen University have analysed the notorious Storm Worm botnet, and concluded it certainly isn't as invulnerable as it once seemed. Quite the reverse, for in theory it can be rapidly eliminated using software developed and at least partially disclosed by Georg Wicherski, Tillmann Werner, Felix Leder and Mark Schlösser.
PHP Québec Est Fière De Présenter La Conférence PHP Québec 2009
C'est l'occasion rêvée de rencontrer ces experts, de parfaire vos connaissances et d'élargir votre réseau de contact. Cette année l'organisation propose une formule améliorée : - 3 jours, plus de 50 conférences - Des Ateliers - Spécial CMS et Frameworks - Un salon de l'emploi - Un cocktail - Des activités de clôture Pour plus d'informations ou pour vous inscrire, visitez le site Web de la Conférence PHP Québec 2009 au : http://conf.phpquebec.com/ Faites vite, les places sont limitées!
Yahoo BBAuth
It can generate an URL in an Yahoo site that the users must visit to authenticate and authorize your site to have access to Yahoo Web services on behalf of the authenticated user. Once the user authenticates and authorizes the site, the class retrieves credentials that can be used to send Web service request to different Yahoo APIs on behalf the authenticated user.
Mewsoft Paginate
Package: Mewsoft Paginate Summary: Compute page links of listings split in pages Groups: Algorithms, PHP 5 Author: Dr Ahmed Elsheshtawy Description: This class can be used to compute page links of listings split in pages. It takes as parameters the total numbers of entries in the listing, the limit number of entries to show per page and the number of the current page.