User StrangeWill - Information Security Stack Exchange

13 votes

Should a web application return true http errors?

answered Nov 21, 2011 at 19:49

13 votes

Accepted

How is my website vulnerable for sql injections?

answered Jan 26, 2012 at 20:14

12 votes

Accepted

Linux or Windows- the security issue

answered Jun 28, 2012 at 19:29

11 votes

Should passwords be revealed in error message?

answered May 29, 2012 at 21:08

10 votes

Can I use a private key as a public key and vice versa?

answered Dec 21, 2011 at 16:33

9 votes

Security implications of rooting Android

answered Nov 11, 2011 at 20:21

8 votes

Accepted

GPU powered Password cracking machine - buy metal or cloud?

answered Nov 16, 2011 at 17:21

7 votes

Is my bank storing my password in plain text?

answered Jan 23, 2012 at 14:22

5 votes

Is storing card details without the permission of the card holder against PCI DSS?

answered Mar 22, 2012 at 16:09

5 votes

Is AES encrypting a password with itself more secure than SHA1?

answered Jan 9, 2012 at 2:45

5 votes

Accepted

What flaws lie behind HttpContext.Current object i .NET?

answered Nov 12, 2011 at 18:11

5 votes

How quickly can these password schemes really be beaten?

answered Nov 2, 2011 at 18:42

4 votes

What utilities exist to brute force a username and password?

answered Dec 13, 2011 at 17:35

4 votes

Allow apache to write to users' .ssh dir's

answered Apr 10, 2012 at 20:54

4 votes

Reflector - obfuscated code

answered Feb 6, 2012 at 18:38

3 votes

How can I remotely wipe the contents of a Linux Laptop if its been stolen?

answered Feb 23, 2012 at 20:32

3 votes

Without using SSL, what's the most secure way to make an AJAX request to a PHP page?

answered Mar 15, 2012 at 15:18

3 votes

Monitor data a program sends to internet

answered Dec 15, 2011 at 18:37

3 votes

Am I required to hash passwords

answered Nov 1, 2011 at 20:07

2 votes

PHP Vulnerability May Halt Millions of Servers - max_input_vars!

answered Jan 13, 2012 at 16:39

2 votes

Restrict user login to a specific machine

answered Jan 19, 2012 at 18:13

1 vote

What are the best security practices to install a C# Web App on client servers?

answered Feb 3, 2012 at 22:40

1 vote

Should user input be validated for it's length?

answered Dec 16, 2011 at 18:34

1 vote

Hibernate SQL Injection - Fortify 360

answered Apr 20, 2012 at 21:21

0 votes

Store a password to avoid user interaction

answered Dec 16, 2011 at 18:39

0 votes

Strange Event Log Entry - Windows Server 2008

answered Nov 17, 2011 at 18:05

Stack Exchange Network

26 Answers

Should a web application return true http errors?

How is my website vulnerable for sql injections?

Linux or Windows- the security issue

Should passwords be revealed in error message?

Can I use a private key as a public key and vice versa?

Security implications of rooting Android

GPU powered Password cracking machine - buy metal or cloud?

Is my bank storing my password in plain text?

Is storing card details without the permission of the card holder against PCI DSS?

Is AES encrypting a password with itself more secure than SHA1?

What flaws lie behind HttpContext.Current object i .NET?

How quickly can these password schemes really be beaten?

What utilities exist to brute force a username and password?

Allow apache to write to users' .ssh dir's

Reflector - obfuscated code

How can I remotely wipe the contents of a Linux Laptop if its been stolen?

Without using SSL, what's the most secure way to make an AJAX request to a PHP page?

Monitor data a program sends to internet

Am I required to hash passwords

PHP Vulnerability May Halt Millions of Servers - max_input_vars!

Restrict user login to a specific machine

What are the best security practices to install a C# Web App on client servers?

Should user input be validated for it's length?

Hibernate SQL Injection - Fortify 360

Store a password to avoid user interaction

Strange Event Log Entry - Windows Server 2008