CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
If ordering a disabled person placard for California, go in person to DMV. Ordering by mail took 2 months.
Why is it every time Apple pushes a new version of iTunes, it involves downloading/installing 85 megs? Two words: incremental patching
Looking forward to the PayPal X Innovate Conference https://www.paypal-xinnovate.com/ #paypal #xinnovate
Historic wiring in my house http://yfrog.com/f1b1urj #sleepwithoneeyeopen
@steve_piercy the issue is if the login form is http, a network attacker can substitute her own flash object and have it submit to her
Another swag bag tune from #owasp #appsecusa http://youtube.com/watch?v=bDbpzjbXUZI. Good times
We listened to this at #owasp #appsecusa while assembling the swag bag http://youtube.com/watch?v=YdXQJS3Yv0Y
@steve_piercy maybe, but having the login form over http is just as bad
@miscsecurity maybe SSL is only provided after you accept their TOS which states they provide it
Mozilla is updating their CA Certificate Policy, if interested get in on the discussion: http://is.gd/fnxbU
This Saturday is the National Park Service's "Fee Free" Day http://www.nps.gov/findapark/feefreeparks.htm
WHID Top Ten Vulns and report http://projects.webappsec.org/Web-Hacking-Incident-Database-2010-Semi-Annual-Report