Talk Like a Pirate and Think Like a Pirate

Chance to win Ebooks

By Laurel Ackerman
September 18, 2009 | Comments: 14

Online security is critical for any website or application. To outsmart your enemies you have to think like them. O'Reilly has a number of books that tell you what to be on the lookout for and how to protect your online property from attack, as well as learn about vulnerabilities you may not be aware of.

We want to hear your best security advice and tips. And to celebrate Talk Like a Pirate Day on September 19, we're giving away an Ebook version of your choice of Hacking: The Next Generation, Myths of Security, or Security Monitoring to 5 randomly chosen comments submitted by 5PM PT on Monday 9/21.

Arrrrrgh!


You might also be interested in:

14 Comments

Protect your database from SQL injections

Arrrrggghhh!

Here's me best security tip, matey!

Don't sponsor a contest -- Arrrrggghhh! -- that encourages your readers to spam your comments -- Arrrrggghhh! -- in the hope they'll increase their odds -- Arrrrrggghhh -- of winning by having more chances to be randomly picked!

Arrrrggghhh! Batten down the hatches!

Ahoy!

You be havin' t' tell him 'em boatswains that, to take care of 'em buccaneers, not t' fall fer social engineering. Train, update, don't trust 'em sea dogs!

Ahoy! Me likes digital copies as printed copies get soggy at sea!

Keep it up with the security alerts off the software you're on!!! That simple, BIG advice.

Arrrgghhh! Three people can keep a secret is two of them are dead! People are always the weakest security link!

In PHP, use mysql_real_escape_string instead of addslashes when handling user input. Use sprintf for type checking input if expecting data other than a string.

When devising a public web application, use ACLs for the underlying security model no matter *how* much simpler you think your security use-cases are. Feel free to hide the ACLs entirely from the user interface (even the admin UI), but don't make the mistake of assuming that means you don't need ACLs.

Unplug your computer from any kind of network connectivity, have only one admin account and protect it with a, say 32 character code (which even you can't remember) and "throw away the key"....

People don't care to security, principally people using a computer that doesn't belong to them. Think about people in workplace. A very useful tip is to increase spam analyzer, so it will take care of real trash into e-mail accounts, also decrease the chances of being infected with a virus from an unknown message.

Shiver me timbers! This prize be worth a chest full of gold and rum! There be better ways to protect your treasure than to bury it on a desert isle! Arrgh!

Hackers, worms, trojans should all walk the plank! Arrrrrrrgh!

arrr, passwords mates, passwords, arrr

Mix some numbers & letters & punctuation in your passwords. Something only you can remember.
Don't use the same password for all your services, if one gets discovered, all your services are in danger. So have a few you can easily remember & interchange.

For example
&MyF1rst6irlfri3nd.Malika!
&MyS2cond6irlfri3nd.Karen!
&MyTh3rd6irlfri3nd.MissesBlueBeard!

Swab that deck, hoist that sail and establish that baseliiine! Arrrr!

News Topics

Recommended for You

Got a Question?