This Site May Harm Your Computer

Monday, March 10. 2008

At the time of this writing several Google search results pointing to pages on my domain claim that my site may harm your computer (see the screenshot below).

All these links are pointing to the old WordPress blog, which I have obsoleted, since I got tired of the steady security fixes containing critical fixes that are obviously due to insecure coding styles (notorious SQL injection flaws says it all). Therefore I switched to Serendipity and haven't regret that. While Wordpress had numerous of security updates in the meantime, Serendipity had just one - containing a minor security flaw in a module that I do not use.

Serendipity was able to import all postings from the old WordPress blog, however links to other postings or links to images were still pointing to the old pages. So I kept the old blog running. But WordPress still suffers from more and more security flaws - that's why Google showed the warning. As far as I can judge there was no real harm, but I also do not want to keep the old blog updating.


Continue reading "This Site May Harm Your Computer"

Posted by Carsten Schlipf Filed under Security, Site.
Comments (0) Trackbacks (0)

And another critical bug in Wordpress

Thursday, September 13. 2007

Once again Wordpress has released a new update that fixes several security flaws in earlier version. Among the current fixes is a fix for a remote SQL injection. Attacker can get access to account data. I really like the functionality and extensibility of Wordpress. However this constant flow of critical security fixes does not help to raise the level of thrust into the quality of that product. Come on, developers. SQL injections are well known and easy to prevent in 99%. Where is your quality testing?
Posted by Carsten Schlipf Filed under Security.
Comments (0) Trackback (1)

Email Address Changed - Again

Friday, July 20. 2007

Once again I had to change me email address due to a heavily increased amount of SPAM. You can reach me at <firstname>.<lastname>@yeap.de (replace everything wihtin the angle brackets by the appropriate words, so that you get an Email address like john.doe@yeap.de).

Continue reading "Email Address Changed - Again"

Posted by Carsten Schlipf Filed under Personal, Security.
Comments (0) Trackbacks (0)

Microsofts Security Initiative in the Light of FairUse4WM

Friday, September 8. 2006

Bruce Schneier, who is one of the most renowned security gurus, wrote a posting on his blog regarding Microsofts patch strategy in the light of the recent hack of Microsofts DRM infected audio format WMA. Nice proof of the worth of Microsofts security initiative and their real priorities.
Posted by Carsten Schlipf Filed under Security.
Comments (0) Trackbacks (0)
(Page 1 of 1, totaling 4 entries)