Category Archives: Surviving the Internet

An Exquisite Amble through the Realm of Desugaring

Posted on 6 Aug 2023 by hakre

Bonjour Confrères and Consoeurs, Ai, Yay, Yay, wish to invite you on a captivating sojourn into the sophisticated sphere of Desugaring. In the lexicon of programming, Desugaring denotes the elegant procedure of translating more ornate linguistic constructs—dubbed as Syntactic Sugar … Continue reading

Posted in Surviving the Internet, Uncategorized | Tagged , , | Leave a comment

Docker Run without “docker run”

Posted on 23 Oct 2019 by hakre

So there was this one question on Stackoverflow in which the OP was linking an .htaccess tester for Mod-Rewrite-Rules. Despite this being all fine I was asking myself what about really(tm) testing this? So I remembered the rewrite-log from the … Continue reading

Posted in Hakre's Tips, Patched, Pressed, Professional Webdevelopers At Work, Scripts, Surviving the Internet, Tools, Uncategorized | Tagged , , , , | Leave a comment

XPath Null Byte Injection in PHP

Posted on 26 Dec 2013 by hakre

Back in July this year, in Mitigating XPath Injection Attacks in PHP I was writing about how to properly quote a string in PHP’s Xpath 1.0. The code presented there was based on the assumption that the resulting expression is … Continue reading

Posted in Hakre's Tips, PHP Development, Pressed, Surviving the Internet | Tagged , , , , , , , | Leave a comment

The Negative Influence of WordPress on PHP

Posted on 31 Jul 2013 by hakre

The current The TIOBE Programming Community Index for July 2013 shows an increase for PHP, gaining grounds fast and as an ongoing trend over the last year: If compared to January 2013, PHP is the fastest climber with an increase … Continue reading

Posted in Hakre's Tips, Linked, Pressed, Surviving the Internet | Tagged , , , , , | 2 Comments

Mitigating XPath Injection Attacks in PHP

Posted on 11 Jul 2013 by hakre

PHP has two libxml based extensions that allow to execute XPath 1.0 expressions: DOM (by the DOMXPath class) and SimpleXML (with its xpath() method). Both extensions are prone to XPath Injection Attacks, a common attack form. Albeit all this, and … Continue reading

Posted in Hakre's Tips, PHP Development, Pressed, Surviving the Internet | Tagged , , , , , , , | 1 Comment

Dive Into HTML5

Posted on 21 Feb 2013 by hakre

Dive Into HTML5 (by Mark Pilgrim with contributions from others)

Posted in Linked, Pressed, Surviving the Internet | Tagged , | Leave a comment

Prepared Statements

Posted on 23 Dec 2012 by hakre

In Programming With Anthony – Prepared Statements (by Anthony Ferrara; 12 Dec 2012) the author needs only two minutes and 17 seconds (Youtube Video) to explain *Prepared Statements*. Worth to watch. See as well the Playlist of Programming With Anthony … Continue reading

Posted in Hakre's Tips, Linked, PHP Development, Pressed, Surviving the Internet | Tagged , , , , , , , , , | Leave a comment

The Daily Mistake: Not to Proxy Remote Services

Posted on 8 Jun 2012 by hakre

“Just gimme a min, I glue that HTTP based remote service in.” – Whether the standard file_get_contents + Json *bam* or complete SOAP, a developer should have the time to wrap each (remote) data-source inside it’s own interface that is … Continue reading

Posted in Code Smells, PHP Code Smells, PHP Development, Pressed, Surviving the Internet | Tagged , , , , , , , , , , , | 3 Comments

Architecture the Lost Years (Robert Cecil Martin; 4 Nov 2011)

Posted on 9 Jan 2012 by hakre

Did worldwide Hypertext turned software developers out in the field upside-down? In Architecture the Lost Years (1h 06m) Robert C. Martin talks about the web and how it influenced development design decisions in the last decade(s). Is the system the … Continue reading

Posted in Developing, Hakre's Tips, Linked, Pressed, Surviving the Internet | Tagged , , , , , , , , , | 1 Comment

Will Automattic join Dec 29 move away from GoDaddy day?

Posted on 23 Dec 2011 by hakre

With all the reports about SOPA and GoDaddy (Mashable, PC World, ars technica, Read Write Web, VentureBeat, …) I was wondering if Automattic, one of GoDaddy’s customers, has been taking note of selfprodigy’s reddit posting: I’m suggesting Dec 29th as … Continue reading

Posted in Pressed, Save the Date, Surviving the Internet | Tagged , , , , , | 3 Comments

How-To Block Alexa Robot

Posted on 18 Mar 2011 by hakre

It’s easy and can save you some bandwidth per month, just add the following to your robots.txt file: Additionally it saves you to get too much information concentrated on alexa.com. You can contact them to delete existing content as well. … Continue reading

Posted in Surviving the Internet | Tagged , , , | Leave a comment

Best Practice robots.txt

Posted on 23 Feb 2011 by hakre

I did some research month ago and wrote a longer article about robots.txt. But for a quick lookup it’s too much to read, so today it’s time a for a simple best-practices check-list: Use ASCII encoding for robots.txt (see as … Continue reading

Posted in Pressed, Surviving the Internet | Tagged , , , , , | 2 Comments

Websocket Protocol Vulnerability

Posted on 17 Dec 2010 by hakre

Linked: Disabling the WebSocket protocol (by Anne van Kesteren; 08 Dec 2010). This HTML 5 looks to be a scary mess security wise. I hope the browser vendors do their jobs.

Posted in Linked, Surviving the Internet, Uncategorized | Tagged , | Leave a comment

WordPress Licensing Issues – Plugins are GPL, Right?

Posted on 15 Dec 2010 by hakre

If you thought that the wordpress package you can download from wordpress.org is re-distributable under GPL, then you’re thinking wrong. Why do I say so? Thanks to a ticket opened by novasource, it came to my attention, that the Hello … Continue reading

Posted in Hacking The Core, Linked, Pressed, Surviving the Internet, Wordpress Licensing | Tagged , , , , , , , , , , , , | 5 Comments

Slow Crawling Fixes

Posted on 2 Dec 2010 by hakre

WordPress 3.0.2 went out some days ago. Announced as security release (full 3.0.2 Changelog) for the stable wordpress version. While taking a look into the changelog, I got a little flashback. The most prominent security issue was in fact an … Continue reading

Posted in Pressed, Surviving the Internet | Tagged , , , , | 3 Comments

Display Errors on Production Sites – Today: Adult Swim

Posted on 17 Sep 2010 by hakre

Geeeez! The purple pixel robot is talking to me: Warning: Invalid argument supplied for foreach() in _adultswim_get_term_name() (line 395 of / docrootas20/ sites/ all/ modules/ publicreative/ adultswim/ adultswim.module). (Source) How sweet, this will be my new friend. I’ve just fallen … Continue reading

Posted in Pressed, Surviving the Internet | Tagged , , , , , | Leave a comment

Disable Stylesheets in Internet Explorer

Posted on 23 Aug 2010 by hakre

Microsofts Browser, the Internet Explorer, is somehow hated by Webdesigners and Developers throughout the world. But still there is discussion over here and there whether or not to support the Browser any longer, for example version 6. I won’t go … Continue reading

Posted in Pressed, Surviving the Internet | Tagged , , , , , , , , , , , , | Leave a comment

Team playing the hashcat card in Korelogic’s “Crack Me If You Can” DEFCON 2010 competition

Posted on 1 Aug 2010 by hakre

A relativly small team has had great success at DEFCON 2010 in this years “Crack Me If you can” competition sponsored by Korelogic Inc, a US-based information security company.

Posted in Pressed, Reports, Surviving the Internet | Tagged , , , , , , , , , , , , , , , , , , , , | Leave a comment

Resource Expert Droid – Analyze HTTP Requests

Posted on 3 Jul 2010 by hakre

The Resource Expert Droid – or Redbot in short, is an online tool to analyze HTTP requests. It provides decent information about response headers and the request headers can be configured as well (javascript required).

Posted in Hakre's Tips, Pressed, Scripts, Surviving the Internet, Tools, Webtools | Leave a comment