Several years ago, I wrote a blog entry detailing how to use geocoder.us (and Yahoo!) web services to geocode an address. Since then both web services have changed a little and I found myself needing to update my code to support non-US locations. Below is sample code showing how to use Google’s Geocoding web service to get longitude and latitude values for addresses.
What is “Form Caching Vulnerability”?
The Form Caching Vulnerability allows sensitive form fields to be cached and retrieved by another user on the same client.
CWE-525: Information Exposure Through Browser Caching
This is the first of my series on securing ASP.NET web sites. As I work through various vulnerabilities, I’ll document instructions for fellow web developers in hopes that we can help build more secure web applications. The Cookie Vulnerability falls under the common vulnerability name of “Broken Authentication and Session Management.”
What is “Broken Authentication and Session Management”?
This cookie vulnerability is OWASP 2010 A3. You can read more at Top 10 2010-A3-Broken Authentication and Session Management. This threat applies to application functions related to authentication and session management not implemented correctly, allowing attackers to compromise passwords, keys, session tokens, or exploit other implementation flaws to assume other users’ identities.
Debugster is a suite of debugging and development tools for Comicster. I’ll go over each of the various tools below.
- Property Window
- Output Console
- Dynamic Execution
For my first Comicster Skin, I decided to build a customized user interface highlighting the Hero Initiative. I’ve been a bronze member for the last couple of years (ever since I discovered the charity) and I felt that the idea of making a skin to highlight the Hero Initiative would be a great idea. At the least, I figure that it will bring a some exposure for the charity and maybe some of Comicster’s users will read about the charity and become members.
A little bit about the Hero Initiative:
In late 2000, a consortium of comic publishers came up with the idea to create a financial safety net for comic creators, much in the same fashion that exists in almost any other trade from plumbing to pottery. By March of 2001, the federal government approved The Hero Initiative as a publicly supported not-for-profit corporation under section 501 (c) (3).
Since its inception, The Hero Initiative (Formerly known as A.C.T.O.R., A Commitment To Our Roots) has had the good fortune to grant over $400,000 to the comic book veterans who have paved the way for those in the industry today.
The Hero Initiative is the first-ever federally chartered not-for-profit corporation dedicated strictly to helping comic book creators in need. Hero creates a financial safety net for yesterdays’ creators who may need emergency medical aid, financial support for essentials of life, and an avenue back into paying work. It’s a chance for all of us to give back something to the people who have given us so much enjoyment.
The Hero Initiative, www.heroinitiative.org