Clik here to view.
Script Accenting
Pretty awesome paper with an idea on how to prevent future cross-domain policy vulnerabilities: http://research.microsoft.com/~shuochen/papers/ScriptAccenting.pdf. Basically what they propose is to...
View ArticleClik here to view.
Simple text watermarking with Unicode
There’s quite a few papers on the watermarking of text. Most of them are pretty complex. I was trying to think of a less robust, but simpler solution, which could help track text being cross posted on...
View ArticleClik here to view.
Detecting SSH tunnels
Shameless Plug: Use a VPN Tunnel to secure and encrypt your P2P traffic. Italian researchers have published a paper on the Detection of Encrypted Tunnels across Network Boundaries. I came across it in...
View ArticleClik here to view.
Get the physical location of wireless router from its MAC address (BSSID)
Shameless Plug: Protect yourself with public wifi security while connected to public hotspots with a VPN Service. Update: Here’s a coverage map showing what areas they have data on. A nice company...
View ArticleClik here to view.
Secure alias method chaining
Have you ever wanted to redefine a method, chaining it to the original method, but make sure that the original method was uncallable? No? Well yea, most people probably haven’t. But it’s an interesting...
View ArticleClik here to view.
Rails CSRF vulnerability explanation
I know this is old and I also usually don’t like posting duplicate info that’s already easily findable elsewhere, but since I discovered this I figured I would blog about it. Since I find security...
View ArticleClik here to view.
Preventing Frame Busting and Click Jacking (UI Redressing)
Shameless Plug: Don’t let your clicks be tracked. Protect your browsing habits with a VPN Service. Some websites are under the impression this very old frame busting code can prevent click jacking...
View ArticleClik here to view.
Ridiculous ruby meta programming hack
Ruby 1.8.6 has a bug where Dir.glob will glob on a tainted string in $SAFE level 3 or 4 without raising a SecurityError as would be expected. You can see this from the following code: lambda { $SAFE =...
View ArticleClik here to view.
anti anti Frame Busting
In this post I presented a way to prevent a site you were (i)framing from frame busting out. Jeff Atwood recently contacted me to see if I knew a way to get around the prevention (to prevent sites from...
View ArticleClik here to view.
Canonical redirect pitfalls with HTTP Strict Transport Security and some...
tl;dr There is a common pitfall when implementing HTTP Strict Transport Security on sites that 301 redirect from x.com -> http://www.x.com which leaves your users open to a MITM attack. Paypal is...
View Article