Heine

  • Home
  • Drupal
  • About

Teampassword manager's password generator is biased

Heine —Wed, 2021/07/07 - 16:42

While testing the password generator of the password manager TeamPasswordManager I noticed that the frequency distribution of characters deviates from expectations. So much so even, that it is quite obvious on visual inspection.

  • Security
  • TeampasswordManager
  • Disclosure
  • Read more about Teampassword manager's password generator is biased

Other vectors for SA-CORE-2014-005?

Heine —Fri, 2014/10/31 - 21:57

This is intended a comment on Acquia's Learning from hackers a week after the Drupal SQL Injection announcement, but mollom prevents me from posting it there. In it, scor asks:

An open question is whether the SQL injection vulnerability was exploitable via some vector other than via the user login form.

  • Drupal
  • Security
  • Read more about Other vectors for SA-CORE-2014-005?
  • 3 comments

Lazy loading: hook_hook_info is for hook owners only.

Heine —Tue, 2013/07/30 - 22:38

I've recently seen some recommendations to use hook_hook_info to provide "groups" to core-provided hooks so you can move your module's implementations of those hooks to $module.$group.inc. A poor-mans autoloader if you will.

Doing this can lead to unexpected results.

  • Planet Drupal
  • Drupal
  • Read more about Lazy loading: hook_hook_info is for hook owners only.

From bug to exploit - Bakery SSO

Heine —Mon, 2013/02/18 - 12:59

I recently evaluated the Bakery Single Sign-On System aka Bakery SSO aka Bakery on behalf of clients. This article describes how I moved from finding a small weakness in version 2.x-alpha-3 to an exploit.

If you haven't updated all your sites to Bakery 2.0-alpha4 (6.x, 7.x), go and do so now.

  • Security
  • bug2exploit
  • Planet Drupal
  • Drupal
  • Read more about From bug to exploit - Bakery SSO

Solving getting bogus dates via MSSQL_QUERY

Heine —Thu, 2012/11/29 - 19:24

If you get bogus dates back from MSSQL, make sure PHP is compiled against the FreeTDS libary that's currently in use. If not, recompile PHP.

  • MSSQL
  • FreeTDS
  • datetime
  • date
  • Read more about Solving getting bogus dates via MSSQL_QUERY

Explaining the Drupal < 7.16 Installer vulnerability

Heine —Wed, 2012/10/24 - 11:24

SA-CORE-2012-003 fixes an issue in the Drupal installer that enables an attacker to cause the site to use a different attacker-controlled database.

The installer vulnerability was found while preparing my DrupalJam presentation (NL) on security audits and reported via the (awesome!) SecuriTeam Secure Disclosure program. As promised on IRC & Reddit, here's some additional information on the root cause(s).

  • Security
  • Drupal
  • Planet Drupal
  • bug2exploit
  • Read more about Explaining the Drupal < 7.16 Installer vulnerability
  • 3 comments

Pages

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • next ›
  • last »
Subscribe to Heine RSS

Recent posts

  • Teampassword manager's password generator is biased
  • Other vectors for SA-CORE-2014-005?
  • Lazy loading: hook_hook_info is for hook owners only.
  • "Always offline" problem in EA's Origin due to antivirus
  • From bug to exploit - Bakery SSO
more

Security reviews

I provide security reviews of custom code, contributed modules, themes and entire sites via LimoenGroen.

Contact us for a quote.

Follow @ustima

Copyright © 2021 by Heine Deelstra. All rights reserved.

  • Home
  • Drupal
  • About