Archive for category JavaRanch
finding out when Oracle changes the certification objectives
November 29th, 2014 by Jeanne BoyarskyAs Scott and I noted in the introduction of objective changes on the book page. You can also look at the text files for each exam on github. The last modified date shows the last change. You can also click on the file to see the history/diffs to see what changed and approximately cool. You […]
Posted: 29 November, 2014 in Development Process, Java Certification, JavaRanch.
Tags: maven, objectives, oca, ocajp, oracle
Comments: -
contrast security plugin for eclipse
November 2nd, 2014 by Jeanne BoyarskyI recently learned that Contrast Security has a free plugin that tests your application against the OWASP Top 10. We’ve tried to fix these already. You can read about how we fixed CSRF and running Sonatype CLM Insight. The two CVEs are in functionality in the library that we don’t use. Still it is sweet to have […]
Posted: 2 November, 2014 in Java/Java EE, JavaRanch.
Tags: contrast, eclipse, owasp, security
Comments: 1
fixing clickjacking and brute force login for jforum
September 28th, 2014 by Jeanne BoyarskyI’ve been blogging about some of the security fixes we’ve made in the CodeRanch fork of JForum such as CSRF. Today it is time to write about Clickjacking and preventing brute force logins. Clickjacking Clickjacking is an attack where someone includes your site in transparent frames and the attacker intercepts anything typed in/clicked. We had originally […]
Posted: 28 September, 2014 in Java/Java EE, JavaRanch.
Tags: clickjacking, security
Comments: -