This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "User:EPaul"
m (Creating user page for new user.) |
(make the biography a bit more suitable for a wiki page) |
||
| Line 1: | Line 1: | ||
| − | I'm a senior software developer for (company internal) web applications at Zalando, but not a security specialist in any | + | I'm a senior software developer for (company internal) web applications at [https://jobs.zalando.com/tech/ Zalando], but not a security specialist in any way. |
| − | I was moderator for Cryptography Stack Exchange for almost 4 years (Aug 2011 – June 2015), picking up some cryptography knowledge then. | + | [https://crypto.meta.stackexchange.com/questions/80/moderator-pro-tem-announcement I was moderator for Cryptography Stack Exchange] for almost 4 years (Aug 2011 – June 2015), picking up some cryptography knowledge then. |
| − | |||
| − | I | + | |
| − | For example, the Java class name validation regex in | + | I created this account as I wanted to correct some mistakes in the website I noted, not write a full biography here. For example, the Java class name validation regex in [[OWASP Validation Regex Repository]] is not just vulnerable to RegEx DOS attacks (as noted on [[Regular expression Denial of Service - ReDoS#Examples]] and in [http://en.wikipedia.org/wiki/ReDoS Wikipedia's ReDoS article]), but also simply wrong, and fixing the wrongness (escaping the dot) also fixes the evilness of the RegEx. |
Latest revision as of 21:25, 14 March 2018
I'm a senior software developer for (company internal) web applications at Zalando, but not a security specialist in any way.
I was moderator for Cryptography Stack Exchange for almost 4 years (Aug 2011 – June 2015), picking up some cryptography knowledge then.
I created this account as I wanted to correct some mistakes in the website I noted, not write a full biography here. For example, the Java class name validation regex in OWASP Validation Regex Repository is not just vulnerable to RegEx DOS attacks (as noted on Regular expression Denial of Service - ReDoS#Examples and in Wikipedia's ReDoS article), but also simply wrong, and fixing the wrongness (escaping the dot) also fixes the evilness of the RegEx.
