Mot-clé - security

Fil des billets - Fil des commentaires

Around the Web - February 2016 - MySQL, Docker, Security & Webapps/API

MySQLMySQL password expiration features to help you comply with PCI-DSS : available from MySQL 5.6+, you can define an expiration date and then improve your PCI-DSS compliance.DockerOfficial images are to move from Ubuntu to Alpine : main arguements are about disk space saving (and so bandwith and  […]

Lire la suite

Around the Web - November 2014

DNS Google public DNS (ie and is serving a third of the worldwide DNS traffic. Cloudflare published a series of articles on DNSSEC (for Secure DNS) ; very interesting if you want to know more about DNS Security and DNSSEC implementation : DNSSEC, an introduction & DNSSEC,  […]

Lire la suite

Content Security Policy (CSP)

On a similar topic as CORS and the same origin police I wrote some months ago, there is another initiative called Content Security Policy which is defined as follow in the Mozilla Developper Network CSP Page : Content Security Policy (CSP) is an added layer of security that helps to detect and  […]

Lire la suite

Postgres > Major security issue > PostgreSQL 9.2.4, 9.1.9, 9.0.13 and 8.4.17 released

For those using Postgres, a minor release was made yesterday fixing some major security issues ; everyone is strongly recommended to upgrade its postgres server immediatly ; especially if your server is accessible from outside of your network ; if you are hosted internally, it's safe to upgrade but  […]

Lire la suite

PHP 5.2 / 5.3 / 5.4

I read a reminder on the PHP support policy last week and thought it could be worth a reminder here : PHP 5.2 version are no longer supported since 2 years with the release of PHP 5.2.16 on mid dec 2010 and the PHP Team to announce the end of support of PHP 5.2.x (even if PHP 5.2.17 was released in  […]

Lire la suite

Haut de page