About jeff

This author has not yet filled in any details.
So far jeff has created 17 blog entries.

Social media failures: lessons from Brazil

Photo Credit: monotrilho| via Compfight cc A new wave of protests started in Brazil this week. The protests center around political corruption and irresponsible government spending. (I guess the only thing we're missing here in the U.S. is a soccer tournament...) Just as in the Arab Spring protests that toppled governments in Egypt, [...]

By | 2018-10-31T09:08:32+00:00 June 30th, 2013|Social Media|0 Comments

Password hashing API in PHP 5.5

After the recent discovery of a plugin vulnerability, I've been busy looking for ways to button up all areas of public-facing applications for my employer. The first thing I checked was authentication procedures, and was able to improve the way we store password hashes. The current functionality available within PHP left me feeling less than [...]

By | 2018-10-31T09:09:27+00:00 November 21st, 2012|Security|0 Comments

Security hole in tinyMCE plugin

One of my clients recently found out the hard way that there's a security hole in the tinybrowser plugin for tinyMCE. It's a quick fix if you're already using a session variable to manage authenticated users. But it's not necessarily a straightforward fix if your sessions are managed by Zend_Auth or some other framework.

By | 2018-10-31T09:09:42+00:00 October 10th, 2012|Hosting, Security|0 Comments