Fabians small Magento world
  • Home
Subscribe
Tagged

Security

A collection of 3 posts

Security

array_diff(array, string) does(n't) work as expected

This is an old problem, quite a few security researchers already wrote about. But repeating things, helps learning them (especially me). In MageSetup we read posted agreements (terms and conditions) and compare them with all the agreements we expect. This looks like that: $requiredAgreements = $this->_getCustomerCreateAgreements(); $controller = $observer->

  • Fabian Blechschmidt
Fabian Blechschmidt Jan 17, 2017 • 1 min read
Magento

SSL Everywhere or HSTS

We have to secure all the data of our users, not only registration, checkout and login. We need to secure the session data too. SSL Everywhere or HTTP Strict Transport Security (I hope) Everyone knows, that it is important to secure (read as encrypt) our customer’s data. Because of

  • Fabian Blechschmidt
Fabian Blechschmidt Feb 19, 2013 • 4 min read
Security

German OWASP Day 2012

Ich war gestern auf dem German OWASP Day 2012. Die OWASP ist das "Open Web Application Security Project". Eine offene, kostenlose Organisation, die Security in der IT voranbringen will. Es folgen Notizen. Keynote: Volkmar Lotz (SAP) Part 1: Build Knowledge Auch mit Frameworks kann man Sicherheit nicht ohne

  • Fabian Blechschmidt
Fabian Blechschmidt Nov 8, 2012 • 2 min read
Fabians small Magento world © 2022
Powered by Ghost