I fell weird when I see less subscriber You at least deserve 1-2 million subscribers. Your channel is the best because no one tell these things and you not only talk about these things but also tell what to use in real world projects. Even paid courses don't teaches or even tell about these thing. You a great
Thanks! I was actually looking for other topics such as NoSQL injection, sanitize, XXS protection, security headers, rate limiting (indeed included here), HPP and CORS. I'm a backend development student looking to dig further at security issues... Thank you very much for this series, and I can hardly wait to find out what other topics will it maneuvering through...
Hello, Guseyn. You're so sweet. I just discovered your channel and I admire it, I learned a lot. I wonder if there will be a classic nodejs, deno and bun comparison? I would like to know your opinion, regards.
@@aliarslanansari With scrypt in addition to increasing computation you can increase the amount of memory needed to compute the hash. This doesn't bother software implementations much but is much harder to implement with hardware - which is what a dedicated attacker is likely to develop and use. bcrypt (and PBKDF2) use constant, and small, amounts of memory.
Check out Docuo 👉 bit.ly/3SaTsQV
I fell weird when I see less subscriber You at least deserve 1-2 million subscribers. Your channel is the best because no one tell these things and you not only talk about these things but also tell what to use in real world projects. Even paid courses don't teaches or even tell about these thing. You a great
Thanks a lot my friend! :)
Thanks!
I was actually looking for other topics such as NoSQL injection, sanitize, XXS protection, security headers, rate limiting (indeed included here), HPP and CORS.
I'm a backend development student looking to dig further at security issues...
Thank you very much for this series, and I can hardly wait to find out what other topics will it maneuvering through...
Thanks for the feedback my friend! New episodes coming soon 😎
Is the kind of content everyone needs but no one is mentioning
Amazing content as always🙌
I've learned so much from this!
Can u please make a video about multithreading clustering twice by quoting a example of large project scaling
Literally U r doing amazing job 👏🏼
Thank you!!
Great one
Hello, Guseyn. You're so sweet. I just discovered your channel and I admire it, I learned a lot. I wonder if there will be a classic nodejs, deno and bun comparison? I would like to know your opinion, regards.
Really happy to hear that! 🙂I will keep those in mind 😉
@@SoftwareDeveloperDiaries Thank you so much!
🎉 Great video !
great content, do you plan on releasing part 3 any time soon
Yess, it’s coming out soon! 😉
Super content!!!
Thanks for this!
My pleasure!
instead of bcrypt, it is better to use a scrypt that is embedded in node.js
reason?
@@aliarslanansari
With scrypt in addition to increasing computation you can increase the amount of memory needed to compute the hash. This doesn't bother software implementations much but is much harder to implement with hardware - which is what a dedicated attacker is likely to develop and use.
bcrypt (and PBKDF2) use constant, and small, amounts of memory.
@@aliarslanansari answer from stackoverflow
@@aliarslanansari and an additional library, this is a greater weight of the bundle or the final container after the application is built.
Thanks for the hint, you're totally right, it's a better option for most use-cases
great
NodeJS Security Best Practices:
- 1. Rate Limiting
- 2. Password Encryption
- 3. JWT Blacklisting
- 4. JSON Schema Validation
- 5. Escaping HTML & CSS
- 6. ORM/ODM agains Injections
- 7. Security Linter
Just one thing, hashing is not technically encryption
A piece of advice on the sound... there is a noise gate over your voice and it is way too aggressive and keeps on cutting off bits of your words.
I’ve fixed it recently for my newer videos 🫶
Bro, get rid of that background music, it's unprofessional. (Distracting and out of place)
Will keep in mind, thanks for the feedback ✌