While not directly related to conferences, I think this is important information that conference goers should know before travel day:
5 things you need to know about laptop searches at U.S. borders - Be prepared if a customs official seizes your PC at the airport

Share this:
These icons link to social bookmarking sites where readers can share […]

I subscribe(d) to a number of security mailing lists to stay up to date with vulnerabilities with the software and web applications that I use. However, with so many messages coming through, and many of them unrelated to the stuff I actually use, I started to get bogged down with all the email. In an […]

The PHP Security Consortium has released its new project, PHPSecInfo, a tool that mimics the behaviour of the phpinfo() function by generating a report about the security of the PHP installation on a server.
Installation is a piece of cake: just upload the files and then run the index.php in your browser!
PHPSecInfo is simple and […]

SpikeSource recently released the Spike PHP Security Audit Tool, providing static analysis of PHP code for finding security exploits. I'm quite excited to try this out, but couldn't get a working installation happening.
First off, the requirements don't state it but you'll need PHP5 to make this run (due to the use of private/public function […]

Should people who break into Web sites and then report the vulnerability to the site owners be prosecuted?
In June of 2005, Eric McCarty discovered a vulnerability on the University of Southern California's online application system. He reported this vulnerability to Security Focus intending for Security Focus to act as a neutral third party to […]

Like most, I like to keep my web applications updated with the latest security upgrades. However, I find myself in a small conundrum and am wondering about proper security etiquette. Here's the scenario: A website that I have worked on has a PHP application installed that apparently has a severe unpatched security vulnerability. Problem is, […]