risk-analysis

Is google-services.json safe from hackers?

两盒软妹~` 提交于 2019-11-30 12:46:56
If a hacker decompiled my APK would he be able to see my API keys from this file? I am not worried about my source code repository. I am just worried about a hacker being able to see this API key from my APK somehow. I'm trying to encrypt this file and decrypt it at runtime but having some issues The way that the Google plugin is set up, it will be really hard for you to hide the content of the google-services.json file. The only viable way would be to re-implement yourself what the plugin already does for you, which I wouldn't recommend. When using the plugin the way Google intends you to, it

Is google-services.json safe from hackers?

浪尽此生 提交于 2019-11-29 17:21:58
问题 If a hacker decompiled my APK would he be able to see my API keys from this file? I am not worried about my source code repository. I am just worried about a hacker being able to see this API key from my APK somehow. I'm trying to encrypt this file and decrypt it at runtime but having some issues 回答1: The way that the Google plugin is set up, it will be really hard for you to hide the content of the google-services.json file. The only viable way would be to re-implement yourself what the

Why/when are session writes vulnerable to thread termination?

醉酒当歌 提交于 2019-11-29 07:32:01
THE CODE: Session["foo"] = "bar"; Response.Redirect("foo.aspx"); THE PROBLEM: When foo.aspx reads "foo" from the session, it's not there. The session is there, but there's no value for "foo". I've observed this intermittently in our production environment. But I don't mean here to ask a question about Response.Redirect() . THE EXPLANATION: Bertrand Le Roy explains (the bolding is mine): Now, what Redirect does is to send a special header to the client so that it asks the server for a different page than the one it was waiting for. Server-side, after sending this header, Redirect ends the

Why/when are session writes vulnerable to thread termination?

懵懂的女人 提交于 2019-11-28 01:14:17
问题 THE CODE: Session["foo"] = "bar"; Response.Redirect("foo.aspx"); THE PROBLEM: When foo.aspx reads "foo" from the session, it's not there. The session is there, but there's no value for "foo". I've observed this intermittently in our production environment. But I don't mean here to ask a question about Response.Redirect(). THE EXPLANATION: Bertrand Le Roy explains (the bolding is mine): Now, what Redirect does is to send a special header to the client so that it asks the server for a different

Cosmic Rays: what is the probability they will affect a program?

我是研究僧i 提交于 2019-11-26 16:45:58
Once again I was in a design review, and encountered the claim that the probability of a particular scenario was "less than the risk of cosmic rays" affecting the program, and it occurred to me that I didn't have the faintest idea what that probability is. "Since 2 -128 is 1 out of 340282366920938463463374607431768211456, I think we're justified in taking our chances here, even if these computations are off by a factor of a few billion... We're way more at risk for cosmic rays to screw us up, I believe." Is this programmer correct? What is the probability of a cosmic ray hitting a computer and

Cosmic Rays: what is the probability they will affect a program?

好久不见. 提交于 2019-11-26 04:57:12
问题 Once again I was in a design review, and encountered the claim that the probability of a particular scenario was \"less than the risk of cosmic rays\" affecting the program, and it occurred to me that I didn\'t have the faintest idea what that probability is. \"Since 2 -128 is 1 out of 340282366920938463463374607431768211456, I think we\'re justified in taking our chances here, even if these computations are off by a factor of a few billion... We\'re way more at risk for cosmic rays to screw