Tag Archives: security

Random fail

By Laurent | Published: 2010-02-28

Yet another case of trying to be too clever with randomness!

Posted in Uncategorized | Also tagged microsoft, random numbers | Leave a comment

Security is not easy. Programmers should leave things like random number and identifier generation to a library (or at least research the best way to do it). A lot of projects learned it the hard way.
Let’s talk for instance of a function I encountered about six months ago:
function generateRandomKey($len = 20)
{
$string = ”;
[...]

Posted in PHP, Symfony | Also tagged entropy, full disclosure, PHP, random numbers, Symfony | 5 Comments

Switching from BIND to PowerDNS in a few seconds

By Laurent | Published: 2009-03-15

Seconds, really.
First, why stop using BIND? For me it just happened because I couldn’t understand why BIND wasn’t working (again). However there are many other reasons to make the switch before it’s too late. BIND has a bad security history, PowerDNS’s code is more “modern” and its various parts are well-separated (for example, you are [...]

Posted in Sysadmin | Also tagged bind, config, linux, pdns, powerdns, Sysadmin, zone | Leave a comment

Tag Archives: security

Random fail

Security is not easy

Switching from BIND to PowerDNS in a few seconds

Categories

Blogroll

Cool stuff

Me elsewhere

Feeds

Archives

Meta

Recent Posts

Recent Comments