Laravel 5.2: Triggering Password Resets Outside of PasswordController

0

In a recent project I’ve been building a Customer Service Portal where “agents” are allowed to perform certain actions on a user’s account. One of the required features was to send a password reset email to the user. Luckily, this feature is easy to implement thanks to Laravel’s built-in traits.

Laravel 5, Security, Tutorial

Laravel 5.x: Custom Password Reset Validation

0

Having a strong password policy for your application is a important security requirement for any application. This tutorial shows you how you can apply this to Larvel’s PasswordController, which handles password resets.

Input Sanitization, Laravel 5, Laravel 5.2, PHP, Security

AWS EC2: Updating Security Groups using the AWS Command Line Tool

2

Working with multiple clients with their own AWS setups and security groups makes it difficult to work remotely sometimes. For instance, updating the many security groups with my current (dynamic) IP address so I can SSH into the server. Luckily, I’ve created a script for that.

Amazon Web Services, EC2, Security

Cordova: Changing the Default Debug Keystore for Android Applications

0

I’ve already covered release signing Android application in Cordova in a previous article, but sometimes you want to do the same for debug builds. By default, Cordova uses it’s own debug keystore, but it’s easy to customise your project to use a keystore of your choice when creating debug builds.

Cordova: Release Signing Android Applications

2

If you’re using Cordova 5.x+, it’s easy to configure it to also build signed release builds of your Android application. Providing you’re already created a keystore using the keytool, this tutorial will have you building release builds in minutes.

Android, Code Signing, Cordova, Google Play Store, Security

Create Public / Privacy Encryption Keys and Encrypt / Decrypt Data using PHP

3

In a recent project, I’ve been using public/private key encryption to transmit data from a mobile application to an API, keeping sensitive information secure as a result. This tutorial explains how you can create your own keys, and then use them to encrypt or decrypt data using PHP and OpenSSL.

Encryption, PHP, Public / Private Keys, Security, Tutorial

New Vulnerability Found in Bash and How to Test

0

A critical vulnerability has been found in Bash, which affects almost all Linux/Unix distributions that use or have it installed. Luckily, there is a easy way to test to see if your version is vulnerable using a command line.

Bash, Facebook, Linux, Mac OS, Security, Server

Are You Vulnerable to the Heartbleed Bug?

1

A fix for the heartbleed bug, affecting OpenSSL, was released on April 7, 2014. But websites will still be vulnerable until the servers have been patched. See if your site or a site you use is vulnerable.

Security, Server, SSL

How to Spot a Phishing Attempt

0

Phishing attempts to obtain passwords, bank details etc are getting more frequent, with scammers trying to fake banks, social media and more. Here are some clues to look out for when you receive a suspect email.

Emails, Phishing, Security

CodeIgniter: Using CSRF Tokens to Secure Your Application

25

Protecting your CodeIgniter application from CSRF / XSRF attacks is easy, thanks to the framework’s security features. CSRF protection can be enabled in a matter of minutes, and it doesn’t take long to make existing forms and AJAX calls compatible with the feature.

CodeIgniter, jQuery, PHP, Security