Skip to content

Security

  • in Security
  • 3 min read

Finding Security Vulnerabilities in your Dependencies with Dependency-Check

The Open Web Application Security Project (OWASP) may be best known for its top 10 list of the most critical web application security risks. However, the project not only talks about problems; they offer a wide range of documentation to fix those problems (like the .NET Security Cheat Sheet) and publish tools like the OWASP Dependency-Check. This tool can help you to address number 9 of the top 10 list – using components with known vulnerabilities.

5 Mind-Blowing Presentations at NDC Oslo 2018

This year I did not just attend NDC Oslo, I got the chance to contribute as a speaker to this great conference. That shift of perspective made me much more appreciative of the hard work that goes into a talk and how much it takes to stand in front of such a great and welcoming audience.

The five talks I selected for this post had an impact on me that went far beyond of being entertained for an hour. I spend a lot of time thinking about what I heard and I guess so will you. Those presentations may look as if they are at the wrong place for a tech conference, but trust me, they are as important as any technical talk. I am glad the organizers put them in. They challenge how we think, not only about the systems we use and build, but also about how we work with others and make our world a better place.

Protect your Data with a Disposable Email Address

The constant demand to create an account with every web site or app is annoying. As if this is not bad enough, it also puts your data at risk. You use your email everywhere, even when you only need this free WiFi for an hour or two. The data remains on the site and as we can see on sites like Have I been pwned?, it gets "lost" quiet often – and not only by small companies. Combine those leaked accounts with the fact that most people reuse their passwords and you end up with a serious security problem.

My Highlights of NDC Oslo 2017

The 10th edition of the NDC (Norwegian Developers Conference) in Oslo was the best I ever attended. Kjersti and her team made everyone welcome and created a friendly and familiarly atmosphere. This is no easy task, especially not with 2000 attendees. But even at this size you always felt a personal touch and if you needed something, you would always find one of the organizers.

Between the talks you had enough time to meet with old friends and make new ones. Talking in person to people you know from Twitter is a great way to connect on a different level. And let's not forget the food. The NDC has plenty and if you don't like a dish, you have other offerings that should meet your taste.

Export all Saved Passwords from Google Chrome

Google Chrome lets you save your passwords in its password store. While this is a convenient function, it may not be the most trustworthy one. If you trust Google and only use one computer, this may be fine. However, should you try to move your passwords into a service like 1Password, Last Pass or the KeePass application, you will figure out a small problem: The dialog to access your passwords allows you to view only one password at a time:

Chrome saved passwords

Passwordless Backup with Synology DiskStation

The network attached storage appliances from Synology, called DiskStation, are great backup devices. They come in various sizes and don’t need much maintenance. The only thing that is a bit annoying is the password prompt whenever I use rsync to backup my files. With public key authentication over SSH that problem can be solved without risking the security of my data.

Allowing Self-Signed Certificates on Localhost with Chrome and Firefox

HTTPS for web applications is soon no longer an option, but a must-have. When you develop your application on your local machine, you may want to use a self-signet certificate. They cost you nothing and tools like Visual Studio create them on the first run in IIS Express. Everything would be great if current web browsers wouldn’t show you an error page like this one:

The Problem

  • in Security
  • 2 min read

How to Verify the integrity of a Downloaded File – on Windows, Mac & Linux

When you move files over a network, then there is always the possibility of something going wrong. Even when no error is reported, the file may be corrupt or incomplete. To be sure that everything is correct, you should check the checksum of the file. This can be done with pre-installed tools on nearly every operating system and this article is going to show you how it’s done.