Welcome To Snipplr
Everyone's Recent Snippets Tagged security
- All /
- JavaScript /
- HTML /
- PHP /
- CSS /
- Ruby /
- Objective C
Apache can be used to ban undesirable people and bots from your website. With this code, we’re telling Apache that everyone is allowed to visit our blog except the person with the IP addresses
1
903
posted 14 years ago by mariusscheel
If your WordPress blog is outdated even by a few days and there's a security hole in your old version you could be seriously compromised without even knowing it. Trust me. This has happened to two of my clients and the fix is not easy. Usually, once...
0
900
posted 14 years ago by josephknight
Replace "mysite" with your own and this will block access to sites attempting to link to your images. Note, it's not necessarily always a bad thing for people to link to your images. If you run a blog, portfolio, or sales gallery, etc, you may actual...
2
1034
posted 14 years ago by josephknight
The problem
As a WordPress user, you probably know how important the wp-config.php file is. This file contains all of the information required to access your precious database: username, password, server name and so on. Protecting the wp-config.php...
0
902
posted 14 years ago by josephknight
The problem
Protecting dynamic websites is especially important. Most developers always protect their GET and POST requests, but sometimes this is not enough. We should also protect our blog against script injections and any attempt to modify the PH...
3
1047
posted 14 years ago by josephknight
If you want to serialize a password in some custom object you are working with, create another member that is the encrypted bytes and serialize/deserialize that.
For simply encrypting/decrypting a file, you can use [System.IO.File.Encrypt](http://...
0
865
posted 14 years ago by pckujawa
From the Big Spaceship Labs website.
This is a useful workaround for the following error message ...
SecurityError: Error #2142: Security sandbox violation: local SWF files cannot use the LoaderContext.securityDomain property.
7
1341
posted 14 years ago by adrianparr
C#
Obfuscating .NET code so as to hide implementation details from public view (using BabelObfuscator)
If you weren't already aware, you can use a product like [Reflector.NET](http://www.red-gate.com/products/reflector/) to see all of the source code (that's right, the code) of a .NET assembly (DLL, EXE, etc). This is a real problem when your code is...
1
1153
posted 15 years ago by pckujawa
Put this at the top of your CodeIgniter models, controllers, libraries and helpers to restrict direct access to them.
1
1645
posted 15 years ago by AzizLight
In addition to the recommendations on the Wordpress Website.
Limit the amount of PHP files that a writable by Apache. The directory's and files that need to be writable, do not always need to be executed by PHP directly.
This makes it a bit har...
1
812
posted 15 years ago by occam
Ideal if you have a laptop. If someone steals it, he will not be able to read all your mails and documents with precious information (about passwords, accounts, credit cards, private stuffs, etc...).
This snippet is considering that you are using...
0
794
posted 15 years ago by Dorgendubal
[quote]$_SERVER['HTTP_REFERRER']'s problem is that can be spoofed, but it's better than nothing if you really want that.[/quote]
1
1157
posted 16 years ago by luizlopes
Since network shares by default only get LocalIntranet permissions, it's relatively common to want to use CasPol to fully trust some shares that you control and know are safe.
To trust everything on the share \\ShawnFa-Srv\Tools, use the command...
2
1054
posted 16 years ago by hoffstein
1. Allows encryption between client and server
2. Bypasses filtered port, if any on the standard port for the given service.
1
984
posted 16 years ago by iblis
This was taken out of a presentation by eZ systems on PHP Best Practices
0
889
posted 16 years ago by luizlopes
this is not the ultimate secure way, but it's at least not displaying the email link
3
893
posted 17 years ago by iTony
C#
ASP.Net Code to Get an Active Directory User Name from the Integrated Authentication Principal Name
Typically won't work if the ASP.Net service identity (in the machine.config ProcessModel section) is a local account.
1
1555
posted 17 years ago by rengber
So you don't have to type the password everytime you log in to that remote ssh server. Don't enter a passphrase when prompted, just hit enter. This example is for Mac OS X but is likely to work on *nix plats too.
5
922
posted 17 years ago by micmath
I got most of these tips out of a great book published by O'Reilly (my favorite web-design publisher): "Programming PHP, 2nd Ed." by Lerdorf, Tatroe, and McIntyre. Another good book is "Essential PHP Security," also published by O...
2
1581
posted 18 years ago by pckujawa