Peter Chng pchng

## every_python_programmer.md

      
              1 file
            
          
              0 forks
            
          
              1 comment
            
          
              4 stars
            
          
                seanjensengrey
                / every_python_programmer.md
            
            
              Last active
              March 13, 2016 05:18
            
          
    Basic opinionated Python code technique guide. For lower level naming and structure, see https://github.com/amontalenti/elements-of-python-style
Don't overuse the batteries

Install deps with pip managed by virtualenv, this decouples the VM from the runtime. Try not to target the latest VM release, this prevents your code from being trivially installable on existing Ubuntu and Centos systems. Use tox and py.test (see below) to confirm that decoupling.
namedtuple

Immutable, named lightweight composite containers for your data. Removes magic numbers from your code.

  
## crypto-wrong-answers.md

      
              1 file
            
          
              28 forks
            
          
              13 comments
            
          
              485 stars
            
          
                paragonie-scott
                / crypto-wrong-answers.md
            
            
              Last active
              April 21, 2024 23:48
            
              
                An Open Letter to Developers Everywhere (About Cryptography)
              
          
    Hello software developers,
Please check your code to ensure you're not making one of the following mistakes related to cryptography.
I. General Mistakes


Writing your own home-grown cryptography primitives (For example: Mifare Classic)

Exception: For the sake of learning, but don't deploy it in production.


Using a fast hash function (e.g. MD5, SHA256) for storing passwords. Use bcrypt instead.
Not using a cryptographically secure random number generator


## hngen.py
import urllib2
import re
import sys
from collections import defaultdict
from random import random

"""
PLEASE DO NOT RUN THIS QUOTED CODE FOR THE SAKE OF daemonology's SERVER, IT IS
NOT MY SERVER AND I FEEL BAD FOR ABUSING IT. JUST GET THE RESULTS OF THE
CRAWL HERE: http://pastebin.com/raw.php?i=nqpsnTtW AND SAVE THEM TO "archive.txt"

## password_hashing_api.md

      
              1 file
            
          
              23 forks
            
          
              38 comments
            
          
              106 stars
            
          
                nikic
                / password_hashing_api.md
            
            
              Created
              September 12, 2012 15:04
            
              
                The new Secure Password Hashing API in PHP 5.5
              
          
    The new Secure Password Hashing API in PHP 5.5

The [RFC for a new simple to use password hashing API][rfc] has just been accepted for PHP 5.5. As the RFC itself is rather technical and most of the sample codes are something you should not use, I want to give a very quick overview of the new API:
Why do we need a new API?

Everybody knows that you should be hashing their passwords using bcrypt, but still a surprising number of developers uses insecure md5 or sha1 hashes (just look at the recent password leaks). One of the reasons for this is that the crypt() API is ridiculously hard to use and very prone to programming mistakes.

  
## gist:2469037
# -*- mode: ruby -*-
# vi: set ft=ruby :
# David Lutz's Multi VM Vagrantfile
# inspired from Mark Barger's https://gist.github.com/2404910

boxes = [
  { :name => :web,    :role => 'web_dev',     :ip => '192.168.33.1', :ssh_port => 2201, :http_fwd => 9980, :cpus =>4, :shares => true },
  { :name => :data,        :role => 'data_dev',         :ip => '192.168.33.2', :ssh_port => 2202, :mysql_fwd => 9936, :cpus =>4 },
  { :name => :railsapp,    :role => 'railsapp_dev',     :ip => '192.168.33.3', :ssh_port => 2203, :http_fwd => 9990, :cpus =>1}
]

## page.html
<html>
  <head>
    <script>
      function debug(string) {
        var element = document.getElementById("debug");
        var p = document.createElement("p");
        p.appendChild(document.createTextNode(string));
        element.appendChild(p);
      }
	import urllib2
	import re
	import sys
	from collections import defaultdict
	from random import random

	"""
	PLEASE DO NOT RUN THIS QUOTED CODE FOR THE SAKE OF daemonology's SERVER, IT IS
	NOT MY SERVER AND I FEEL BAD FOR ABUSING IT. JUST GET THE RESULTS OF THE
	CRAWL HERE: http://pastebin.com/raw.php?i=nqpsnTtW AND SAVE THEM TO "archive.txt"
	# -- mode: ruby --
	# vi: set ft=ruby :
	# David Lutz's Multi VM Vagrantfile
	# inspired from Mark Barger's https://gist.github.com/2404910

	boxes = [
	{ :name => :web, :role => 'web_dev', :ip => '192.168.33.1', :ssh_port => 2201, :http_fwd => 9980, :cpus =>4, :shares => true },
	{ :name => :data, :role => 'data_dev', :ip => '192.168.33.2', :ssh_port => 2202, :mysql_fwd => 9936, :cpus =>4 },
	{ :name => :railsapp, :role => 'railsapp_dev', :ip => '192.168.33.3', :ssh_port => 2203, :http_fwd => 9990, :cpus =>1}
	]
	<html>
	<head>
	<script>
	function debug(string) {
	var element = document.getElementById("debug");
	var p = document.createElement("p");
	p.appendChild(document.createTextNode(string));
	element.appendChild(p);
	}