PHPnews.io

Overview for 'evertpot'


Log4j, Faker and Black Swan Events

Written by Evert Pot / Original link on Mar. 4, 2022

In December log4j, a library that’s used by a massive amount of projects had a major vulnerability, and in January the author of ‘Faker’ and ‘Color’ went nuclear, released a intentionally buggy version that broke a lot of projects (temporarily). A lot has been said about both of these, but I wanted…


Request bodies in GET requests

Written by Evert Pot / Original link on Jan. 29, 2022

12 years ago I asked on Stack Overflow: Are HTTP GET requests allowed to have request bodies?. This got a 2626 upvotes and a whopping 1.6 million views, so clearly it’s something lots of people are still curious about, and in some cases disagree with the accepted answer. Because it keeps popping up…


Hello 2022!

Written by Evert Pot / Original link on Jan. 6, 2022

Yesterday I received an email from a reader asking ‘Are you ok?’. It’s been nearly 8 months since the last time I wrote here. In that last post I celebrated blogging on this website for 15 years with some consistency, so perhaps it’s a bit ironic for that to be immediately followed by complete sile…


15 years of blogging

Written by Evert Pot / Original link on May. 29, 2021

I’m a few days late, but as of May 25, 2021 I’ve had this blog for 15 years! I guess it also makes this my longest running project. The blog went through quite a few iterations and platforms, but the current Github Pages iteration is about 8 years old already. This is how it looked between 2006 and…


JWT should not be your default for sessions

Written by Evert Pot / Original link on May. 10, 2021

Cookies When designing web applications, (especially the traditional HTML kind), you will at one point have to figure out how to log a user in and keep them logged in between requests. The core mechanism we use for this are cookies. Cookies are small strings sent by a server to a client. After a cl…