Over at Mokka mit Schlag Elliotte Rusty Harold (he teaches Java/XML at Poly) is asking whether SQL is the only language with injection attack vector? What about XML/ XPath, JSON, etc. Is there a comprehensive attack-tree for injection attacks? See if you can answer some of these questions.
Author Archive for Jason Bourne
I think one of the biggest problems to privacy is dumpster diving. Sure enough you are suppose to use a crosscutting shredder to shred the paper before you throw it out and everything but… have you ever received these address stickers from– who are they: Solon Cancer Society– or others? (I am all for supporting the development of a cure for cancer and everything but let’s stick to the moral of the story here, shall we?). Have you ever tried running those address labels though a crosscutting shredder? That’s right, the sticky labels will jam up your shredder until it smokes to death.
What I think would be a useful public policy is to mandate the junk mailers to put all personal information on a single, easily identifiable paper (I would go as far as to suggest use fading ink that will disappear after a certain date, but I am not going to go that far today) so that it is easy for us, the general public, to destroy our private information, which you have gathered without our permission in the first place. Why can’t SFS/ISIS send out a letter to our State Senators about this? Isn’t it worth it?
Loading ...
Recent Comments