About the author
Christian Stottmeister is a technical projectmanager responsible for large website setups with a personal interest in security, web technology and projectmanagement issues. Contact information and more details about Stotti can be found here.
@stottiblog
- Latest #TYPO3 project is online. DNS propagation takes a bit longer, so URL next week. Wish you a nice weekend! Twitter 2 hours ago
- @T3RevNeverEnd I'd be grateful for some live coverage. More tweets please! :) Twitter 6 hours ago
- @techfreaks Okay so you don't mind when i leave out the URL? No problem.. .just need to remember what i wanted to say. ;) #comments #blog Twitter 6 hours ago
- Haha, good one! RT @sgtypo3: Now where is the TemplaVoila Release which @dmitryd "blocked" so long? Just wondering.. Twitter 6 hours ago
- @techfreaks Hi Rohit, it's a pity that you don't approve my comment. Fear the competition? ;) Twitter 2010/03/11
-
RSS Links
Most popular posts of last month
Category Archives: security & privacy
The origins of Cross Site Scripting
Anecdotes on the term "Cross Site Scripting" (a.k.a. XSS/CSS) and a few links to prevent Cross Site Scripting attacks.
Also posted in world wide webtech Tagged security, web application security, webmaster, xss Leave a comment
Google will inform webmasters about their vulnerable software
As announced earlier Google will soon start to inform webmasters if they’re running out-of-date or vulnerable software. All webmasters registered with the Google Webmaster Tools will soon get notifications in case of using outdated software. Google is trying to achieve this by parsing the HTML code of the website, especially the generator meta tag. Quoting [...]
Also posted in my beloved code, world wide webtech Leave a comment
New Wordpress password hasher tool
This time just a quick post as I am in a hurry. Ever wondered how to change your Wordpress password in case you have forgotten it? In early versions Wordpress used the MD5 hashing algorithm to “encrypt” the passwords of a user. Nowadays Wordpress uses the Portable PHP password hashing framework (PHPASS) instead of MD5 [...]
Also posted in hands off! this is my stuff Tagged cipher, hashsum, md5, password, wordpress 9 Comments
How to crack MD5 passwords with John the Ripper – a live example exploiting TYPO3
Earlier I told you how to crack MD5 passwords in general. This article tells how to get the passwords out of a TYPO3 installation, which are MD5-hashed, and crack them using John the Ripper.
Preparations step 1: lurk the data!
Okay, assuming that you’re an TYPO3 administrator that wants to check the password strength of your backend [...]
Boards.ie Forums have been hacked – don’t panic!