https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=ArjanlOWASP - User contributions [en]2026-05-22T16:50:03ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Talk:Trust_Boundary_Violation&diff=50114Talk:Trust Boundary Violation2009-01-05T15:56:33Z<p>Arjanl: New page: Another control could be using Hungarian notation to denote unsafe variables: [http://en.wikipedia.org/wiki/Hungarian_notation Apps Hungarian notation].</p>
<hr />
<div>Another control could be using Hungarian notation to denote unsafe variables: [http://en.wikipedia.org/wiki/Hungarian_notation Apps Hungarian notation].</div>Arjanlhttps://wiki.owasp.org/index.php?title=Talk:Unchecked_Return_Value:_Missing_Check_against_Null&diff=50113Talk:Unchecked Return Value: Missing Check against Null2009-01-05T15:53:17Z<p>Arjanl: New page: a control could be using "CONSTANT".equals(variable) instead of variable.equals("CONSTANT")</p>
<hr />
<div>a control could be using "CONSTANT".equals(variable) instead of variable.equals("CONSTANT")</div>Arjanlhttps://wiki.owasp.org/index.php?title=User:Arjanl&diff=50112User:Arjanl2009-01-05T15:48:29Z<p>Arjanl: New page: Arjan Lamers is a Java developer and project lead, currently working at [http://www.first8.nl First8 BV]. He is specialized in large scale integration projects with a security focus.</p>
<hr />
<div>Arjan Lamers is a Java developer and project lead, currently working at [http://www.first8.nl First8 BV]. He is specialized in large scale integration projects with a security focus.</div>Arjanlhttps://wiki.owasp.org/index.php?title=Talk:Unreleased_Resource&diff=50111Talk:Unreleased Resource2009-01-05T15:46:27Z<p>Arjanl: New page: an even more vicious example for java is the following: { Runtime rt = Runtime.getRuntime(); Process p = rt.exec("ls"); } This implicitely creates three opened streams (input, ou...</p>
<hr />
<div>an even more vicious example for java is the following:<br />
{ Runtime rt = Runtime.getRuntime();<br />
Process p = rt.exec("ls");<br />
}<br />
<br />
This implicitely creates three opened streams (input, output and error) which should be closed.</div>Arjanlhttps://wiki.owasp.org/index.php?title=Talk:Insecure_Randomness&diff=50109Talk:Insecure Randomness2009-01-05T14:54:41Z<p>Arjanl: New page: The example isn't very wel chosen in my opinion: a better PRNG (e.g. SecureRandom for Java) doesn't really help in this example since the seed can be pretty easily guessed. It exposes othe...</p>
<hr />
<div>The example isn't very wel chosen in my opinion: a better PRNG (e.g. SecureRandom for Java) doesn't really help in this example since the seed can be pretty easily guessed. It exposes other vulnerabilities such as a timing attack when a second request is done within the same millisecond.<br />
<br />
As a control I'd suggest mentioning that you should create a PRNG only once and reuse it instead of creating a new one each time. Or maybe that's another vulnerability...</div>Arjanlhttps://wiki.owasp.org/index.php?title=Talk:Dead_Code:_Broken_Override&diff=50108Talk:Dead Code: Broken Override2009-01-05T14:22:28Z<p>Arjanl: New page: a control could be: using the @Override annotiation (since Java 1.5). Most static code analysers like findbugs will signal missing @Override.</p>
<hr />
<div>a control could be: using the @Override annotiation (since Java 1.5). Most static code analysers like findbugs will signal missing @Override.</div>Arjanl