Tag Archives: Security

Web data security paranoia

By Donnie Bachan | Published: February 23, 2009

My recent experiences with several hacking attacks has made me think more about application and data security on the web. In today’s world nothing can be taken for granted and security should be of the highest concern, no mater how simple you think your application or trivial the data you store. Many web applications are [...]

Posted in ColdFusion, Databases, PHP, Security | Also tagged , , , | 1 Comment

Preventing SQL Injection attacks in ColdFusion

By Donnie Bachan | Published: February 17, 2009

This is an article I came across on Ben Forta’s blog. This gives some very good tips on preventing SQL  injection attacks and provides some excellent best practices.  http://www.adobe.com/devnet/coldfusion/articles/sql_injection.html When I took up my current position we had to do a vulnerability scan to become PCI compliant and well we originally failed horribly. After much [...]

Posted in ColdFusion, Databases, Programming, Security | Also tagged | 1 Comment

HostMySite security breach

By Donnie Bachan | Published: February 4, 2009

I recently posted an article about a security breach on my web server which was as a result of my own stupidity but when a site that I manage and host on HostMySite.com is breached twice in 4 days I get extremely peeved. The incident occurred on their ColdFusion shared hosting plan and an attacker [...]

Posted in ColdFusion, Security | Also tagged , | Leave a comment

Computer Security: Learning about botnets

By Donnie Bachan | Published: January 21, 2009

TechRepublic had an interesting article on Botnets and Hosts file pharming. This is something that most people are unaware of while their computers are being silently used by remote attackers.  http://blogs.techrepublic.com.com/security/?p=738&tag=nl.e036 There are a few tools that I would recommend getting Kaspersky Antivirus 2009 which is a pretty comprehensive threat protection suite.

Posted in Antivirus, Security, Windows | Tagged | Leave a comment

Windows 2003 Domain Controller Security

By Donnie Bachan | Published: April 19, 2007

I was having a problem viewing the event logs on my windows 2003 domain controller. The specific error message was “”Unable to complete the operation on ‘Application’. Access is denied”". This was very strange because I logged in as Administrator and should be able to access everything. The solution to this was quite simple, although [...]

Posted in Server | Also tagged , | Leave a comment