Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology

Articles

Sort results
Lori MacVittie

Who Took the Cookie from the Cookie Jar … and Did They Have Proper Consent?

Posted 14 September, 2011 by Lori MacVittie

Cookies as a service enabled via infrastructure services provide an opportunity to improve your operational posture.  Fellow DevCentral blogger Robert Haynes posted a great look at a UK law regarding cookies. Back in May a new law went info... Read more
network-side scripting web application security applications availability compliance cookie design dev dynamic infrastructure encryption html5 infrastructure infrastructure 2.0 management security us web 2.0
0 Reviews
Lori MacVittie

Out, Damn’d Bot! Out, I Say!

Posted 14 July, 2010 by Lori MacVittie

Exorcising your digital demons Most people are familiar with Shakespeare’s The Tragedy of Macbeth. Of particularly common usage is the famous line uttered repeatedly by Lady Macbeth, “Out, damn’d spot! Out, I say” as she tries to wash imaginary... Read more
network-side scripting web application security application delivery applications dev devops firewall gartner hardware irules security us virtuailization virtual patching vuln vulnerabilities waf web 2.0
0 Reviews
Lori MacVittie

Turning the Pushdo Bot Into the Push-oh-no-you-don’t Bot

Posted 23 March, 2010 by Lori MacVittie

Options to put a stop to the latest mutation of the Pushdo trojan The Pushdo bot is a malevolent little beast that is nothing new to Infosec professionals. What might be new, however, is that it recently changed its code and now creates junk... Read more
network-side scripting web application security application delivery cloud dev devops dos hardware irules prevention security ssl trojan us
0 Reviews
Lori MacVittie

WARNING: Security Device Enclosed

Posted 19 November, 2009 by Lori MacVittie

If you aren’t using all the security tools at your disposal you’re doing it wrong. How many times have you seen an employee wave on by a customer when the “security device enclosed” in some item – be it DVD, CD, or clothing – sets off the alarm... Read more
network-side scripting web application security context context-aware dev facebook infosec security us
0 Reviews
Lori MacVittie

Excuse Me But Is That a Gazebo On Your Site?!

Posted 01 October, 2009 by Lori MacVittie

There are few things in reality that can match The Gazebo in its ability to evoke fear and suspicion amongst gamers. The links on your web site may be one of them. In the history of Dungeons and Dragons there exists the urban legend known to... Read more
network-side scripting web application security application delivery applications d&d dev devops firewall hardware infosec irules security spam sqli threat us waf web 2.0 xss
0 Reviews
Lori MacVittie

Clickjacking Protection Using X-FRAME-OPTIONS Available for Firefox

Posted 23 June, 2009 by Lori MacVittie

But browser support is only half the solution, don’t forget to implement the server-side, too. Clickjacking, unlike more well-known (and understood) web application vulnerabilities, has been given scant amount of attention despite its risks and... Read more
network-side scripting web application security application delivery applications availability clickjacking dev devops firefox hardware headers http ie8 internet irules owasp prevention security us web web 2.0
Average Rating: 4.9
3 Reviews
Lori MacVittie

Using Resource Obfuscation to Reduce Risk of Mass SQL Injection

Posted 05 March, 2009 by Lori MacVittie

One of the ways miscreants locate targets for mass SQL injection attacks that can leave your applications and data tainted with malware and malicious scripts is to simply seek out sites based on file extensions. Attackers know that .ASP and .PHP... Read more
network-side scripting web application security apache application delivery configuration design dev devops hardware industry internet irules microsoft php security sql injection us vuln vulnerability web
0 Reviews
Lori MacVittie

I am in your HTTP headers, attacking your application

Posted 15 January, 2009 by Lori MacVittie

Zero-day IE exploits and general mass SQL injection attacks often overshadow potentially more dangerous exploits targeting lesser known applications and attack vectors. These exploits are potentially more dangerous because once proven through a... Read more
network-side scripting web application security application delivery application security applications dev devops exploits firewall hardware http http headers internet irules mod_rewrite networking prevention protocol sans security tcp us vuln vulnerabilities waf web web 2.0
0 Reviews
Lori MacVittie

Stop brute force listing of HTTP OPTIONS with network-side scripting

Posted 05 January, 2009 by Lori MacVittie

Over the holidays Marcin @ tssci security offered up a python script for brute forcing the HTTP OPTIONS on directories. One of the reasons someone would want this information is because if you're (accidentally, of course) allowing PUT methods... Read more
network-side scripting web application security application delivery dev devops hardware http internet irules prevention security us web
0 Reviews
® DevCentral
Search Shortcut: ctrl+shift+f