Category Archives: Security

Login under someone else’s Minecraft account

There’s this interesting exploit in Minecraft that lets you login under someone’s name without ever needing to know the person’s password. All the attacker needs to do is get you to join his/her server once. This client-side fix patches your game so that … Continue reading →

Tags: exploit, Minecraft, name spoof

Printable PHP security checklist

Following someone’s suggestion, my PHP security checklist is now in a printable cheat sheet form. Download: phpsec_cheatsheet.pdf

Tags: PHP, Security

Sandboxed Lua via PHP

I adapted Fran Rogers’s Lua MediaWiki extension into a library named Looah. It runs Lua code in a sandbox from PHP, which allows you to execute Lua code provided by users. Right now it supports limits on recursion depth, the … Continue reading →

Tags: Lua, PHP, sandbox

Definitive PHP security checklist

There was a recent question about a PHP security checklist on a forum I frequent, and I’ve decided to write my own comprehensive checklist to fill the void. There’s something for everyone but the security expert. In fact, you might … Continue reading →

Tags: PHP, Security

Category Archives: Security

Login under someone else’s Minecraft account

Printable PHP security checklist

Sandboxed Lua via PHP

Definitive PHP security checklist

Donate

Categories

Recent Posts

Meta