How to get A+ ranking at the Qualys SSL Server Test

Qualys A+ SSL Security Ranking LogoReading so much about malware, security issues in software, hackers and the NSA affairs, I am also aware that is crucial to secure any digital device and protect your own data. Encryption of connections between client and server is an essential part of this. Of course, it may be hard to achieve perfect security, but often security issues are founded in a lack of knowledge or because someone doesn’t have the time to do things right.

weiterlesen…

Faulty (Length-) Validation in JSF

A few days ago, I examined a Java enterprise web application to find out if it would be difficult to extend the internationalization of the application to support japanese. The internationalization of the UI would not have been a problem, as this is done using property-files. The interesting part would be the database, as it is using UTF-8 and the column sizes vary between one and three bytes according to its intended content. weiterlesen…