Some time ago I had hardened 's authentication system to provide extra security checks at the database layer using column-level security and stored procedures.

Now that I'm modifying the authentication flow on the website a bit to add the dictionary check, I realized that I can't introduce a major vulnerability even if I wanted to - the database model won't let me.

The hardening was to protect against SQL injection, but turned out to be useful beyond that. :blobcataww:

Follow

inb4 I still manage to screw this up somehow.

Sign in to participate in the conversation
niu.moe

Welcome to your niu world ! We are a cute and loving international community O(≧▽≦)O !
We are a moderated instance, that aren't supporting harassment nor hateful speech. But we aren't a "safe" space, we won't prevent you to interact with instances that aren't respecting our rules.
"Be conservative in what you send and liberal in what you receive." - Netiquette
The main language used here is English, but for most of us this isn't our main language, so it's a great place to learn!