The blog of Kristóf Kovács

Freelance Software Architect

Search

// archives

linux

This tag is associated with 2 posts

Exploiting web development worst practices: file inclusion

By Kristóf ⋅ January 25, 2010 ⋅ 2 comments

And then PHP code that he has written will get executed on your server. It could do almost anything. Download any file you store on the server. Change other users’ sessions, changing their preferences, putting things into their shopping cart, etc. Access the database, stealing passwords (you do store passwords encrypted, I hope?), stealing e-mail addresses, residential addresses, whatever you store on the database. It can create new files, uploading viruses or phishing websites.

How not to mess up encodings

By Kristóf ⋅ August 30, 2009 ⋅ One comment

I’m not the kind of pedant guy who always fights for right language, right syntax, or right accenting. In the twentieth century, when there was no standard way to use accents, I wrote my emails, documents, etc even in Hungarian without accents, rather than using the half-cooked solutions that were around, like the multitude of character mappings (for us Hungarians, there were ISO-8859-2 aka Latin-2, ISO-8859-16 aka Latin-16, Windows-1250, CP852, Mac CentralEurRoman, and CP437 that almost had all of our characters). I guess there are nations where it was even worse.

On Twitter

No igen :))) RT @szajmon: ugye tudtatok hogy az internet pocegodrehez vezeto ut dalszoveg-szajtokkal van kikovezve? 7 hours ago
Just because it's black and white, that doesn't make it art 8 hours ago
Rehabilitating #Opera. Can't wait for 10.50 to come out for the Mac. 19 hours ago
"Russia is like Texas with snow" Charlemagne of @theeconomist 24 hours ago
Why do banks think that I want to listen to a whole minute of general information (i.e. crap) when I call their helpdesk? #fail 2010/03/09