Category: Software Engineering

Adding SameSite Cookie Attribute to PHP

For a while now, the SameSite attribute has been used on cookies to define how cookies should be handled across various domains. You can find descriptions that are much better than I’m going to give you. For folks who are on PHP prior to version 7.3 (either due to that being what is current for […]

Misstep 12: Conned Beef Hash

Before I built my forum site in 2006, I was authoring Windows applications, and before that, DOS applications as far back as 1992. I was a young kid back then, my first program being a QBASIC program that spit out ASCII art of a box of crayons, for example. I greatly annoyed my siblings by […]

Misstep 11: To Read This, Pay -$5

Before you run away, there’s no paywall here. I’m not an awful news company unfamiliar with AdBlock afterall 😉 This is the third post in a series that, honestly, details how I should have never became a developer. Read the others if you want to see how I’ve screwed up, and learned, from bad design […]

Misstep 10: The CAPTCHA That Couldn’t

Everybody of any technical ability is familiar with CAPTCHAs, where you enter impossibly squiggly words into a box, just to find out it was case-sensitive and that the “q” was actually a “g”. Or, where you select traffic signals, palm trees, or cars. We’re all just training Google’s AI in the end. Well, I understood […]

Misstep 9: Trial by Fire, the Perfect Storm that Created Me

Welcome to the second misstep of 2020… A series of hindsight. Back in late 2006, I started a small forum site where I learned that building desktop applications != hosting web applications that other people use. The former may be breakable, but it won’t hurt myself or other people. The latter can devastate a business […]

Misstep 8: How I Was Almost Hacked

Very many moons ago (ca. 2008 or so), I built an online image resizer. This was before HTML5 Canvas, so I leveraged PHP and GD Library to handle the resize. Nothing too special really, but I looking to learn image manipulation and provide a tool for people to use when they use forums. Recently, I […]

Stop Using Security Questions

Please stop using security questions. Why security questions were designed with good intentions If you forget your password, a site can ask you a series of security questions. This allows you to recover your account while still potentially authenticating you with questions only you know. Account recovery options are always a great idea, but doing […]

Blocking Tor Exit Nodes by .htaccess with PHP

What is Tor? Tor is a multi-layered anonymizing proxy, used by a lot of parties interested in privacy or avoiding government overreach (great firewall of China, for example). It is also used by annoying spammers who don’t know how to configure a traditional VPN, so they rely on pre-configured browsers. Candidates for this Method If you […]