#Tsaro

67 tambayoyi

Paano kayo hash passwords kuma crypto module?Node.js#securityMiddle
CORS neman nene ne kuma ana gane a yi a cikin Node?Node.js#securityMiddle
Menene mahimman ayyukan tsaro para da Node.js app?Node.js#securitySenior
Yaya kake haɗa abun ciki ta salama tare da iframe da sandbox?HTML#securityMiddle
Nawa ka kula da Authentication a cikin Next.js App Router app?Next.js#securitySenior
Menene ake amfani da guards?NestJS#securityMiddle
Bidda ka aiwatar da authentication (OAuth2/JWT)?FastAPI#securitySenior
Yaya ake saita CORS a FastAPI?FastAPI#securityMiddle
Django's authentication system yaya ke aiki?Django#securityMiddle
Wane ne kalmar sutu da Django ta samarwa?Django#securitySenior
Me ya kamata a yi amfani da custom user model, da kuma ta yaya?Django#securitySenior
Yaya za ka shiga database cikin aminci tare da PDO?PHP#dataMiddle
Sessions da cookies suna aiki a PHP?PHP#securityMiddle
Menene mahimman hanyoyin kariyar jiya a PHP?PHP#securitySenior
Authentication na yadda ya aiki a Laravel?Laravel#securityMiddle
Autorization tare da policies da gates yana aiki ta yaya?Laravel#securitySenior
Yadda za ku karanta aikace-aikacen Android?Android#securitySenior
Kawayen nawa za ka saurouta aikace-aikacen React Native?React Native#securitySenior
Yaya gida da fahimtar suke aiki a cikin PostgreSQL?PostgreSQL#securityJunior
Yaya za ka dakatawa da tsarin Redis?Redis#securitySenior
Yadda kuke kariyar RabbitMQ?RabbitMQ#securitySenior
AWS IAM nima ne?Cloud & AWS#securityJunior
Security groups nima ne kuma ta yaya suke sarrafa shiga? **Security groups** su ne virtual firewalls da ke sarrafa **zazzagewa da fitowa** na traffic zuwa AWS albarkatun (kamar EC2 instances) — suna bayyana wanne ports, protocols, da sources suke ba da izini. Suna da mahimmanci sosai ga AWS network security.Cloud & AWS#securityMiddle
Nawa take IAM roles da policies ke aiki a zurfafa?Cloud & AWS#securityMiddle
Menene mafita na aminci AWS?Cloud & AWS#securitySenior
Kadir za ka tiyata Docker containers?Docker & K8s#securitySenior
Yaaya kake gudanar da sirrai a cikin CI/CD pipelines?CI/CD#securityMiddle
Yaya za ka karya CI/CD pipelines?CI/CD#securitySenior
Menene tsaron aikace-aikace da yaushe yake da mahimmanci?Security#securityJunior
OWASP Top 10 neman?Security#securityJunior
Menene bambanci tsakanin authentication da authorization?Security#securityJunior
SQL injection menene kuma ta yaya ake rigakarta?Security#securityJunior
What ne Cross-Site Scripting (XSS) kuma ta yaya za ka shafe shi?Security#securityJunior
Yaya ya kamata a ajiye da kula da kalmar sirri cikin karfi?Security#securityJunior
HTTPS menene kuma me yasa yake mahimmanci?Security#securityJunior
Me yasa tabbatar da shigar data ya muhimma ga tsaro?Security#securityJunior
Waxe sune aiki masu ma'ana a cikin rufe code?Security#securityJunior
Menene sanannun nau'ikan harin tsaro?Security#securityJunior
CSRF menene kuma yaya za ka iya tsare shi?Security#securityMiddle
Menene mahimman hanyoyin gida (sessions, JWT, OAuth)?Security#securityMiddle
Encryption kuwa nini kuma ana yi amfani da ita ta yaya?Security#securityMiddle
Yaya kuke sarrafa sirri da asusasuwa da tsaro?Security#securityMiddle
Jijiya yaya access control ke aiki (RBAC, least privilege)?Security#securityMiddle
Yaya kuke sarrafa tsaro na abubuwan dogara?Security#securityMiddle
Waɗannan HTTP security headers?Security#securityMiddle
Kayadda kuke ƙera APIs mai tsaro?Security#securityMiddle
Threat modeling nima ne?Security#securitySenior
Menene mahimman dokarin secure architecture?Security#securitySenior
Yaya kake jima da jigon tsaro da keta?Security#securitySenior
Menene Secure Development Lifecycle (SDLC)?Security#securitySenior
Menene mahimman abubuwan da ya kamata a la'akari da su don tsaro na girgije?Security#securitySenior
Me yasa zai yi mahalaka a cikin bukarkatacciyar shigar hannun jiya da kuma sa ido?Security#securitySenior
Kina kuke adbawa jiyoyi cikin karfi?Security#securityMiddle
Security misconfiguration me ne gida ne kuma yadda zake guje masa?Security#securityMiddle
Kawayi kuke tuki upload fayiloli cikin tsafta?Security#securityMiddle
Menene mahimman abubuwan tunawa game da sirrin bayanan da kiyaye ka'ida?Security#securityMiddle
Menene gwajin kutsawa?Security#securitySenior
Menene tsarin tsaron Zero Trust?Security#securitySenior
Yaya kake tiyata cewa kwakwalwar AI ta cika ma'aunin inganci da kariya na aiki-ka?Tech Lead#tech-leadSenior
Menene hadaddun ba da izini ga jirgin ruwa na AI ya aiki, kuma ta yaya za ka kasanta shi cikin aminci?AI-Assisted Development#aiSenior
Yadda ka gina plugin ko app tare da AI a ciki, misali haɗawa da Claude API a cikin WordPress plugin?AI-Assisted Development#aiSenior
Waɗinne jingirori na tsaro da sirri da suke aiki waɗa ana aika lambar kamfani zuwa kayan AI?AI-Assisted Development#aiMiddle
Kaida kaɗa kuɗa DDoS attack daga waje-jaji na zazzage? Duwâ: Duka biyu suna kamar hadari jingina kan buƙatun, saboda haka kuna bambanta su ta hanyar **siffar zazzagen zazzage, ba kawai adadi ba**. DDoS ya nuna daidaicce siffar na injin ba da dalilin kasuwanci; waje-jaji mara-ƙarfi ya biyo hanyar masu zazzage na gaske kuma akwai dalilin da za ku iya nunawa. ## Alama cewa DDoS ne - **Tare da muhimman ƙahon ɗaya** — dubu-dubu buƙatun da ke bugi hanya gida mara kyau (misali `/search` ko `/login`) maimakon yada zazzage a cikin gida. - **Hannu daban-daban da mai sake buhari** — zazzage daga yankuna da ba ku yi aiki a gida, ko majadu ɗaya da aka maimaita/ba waje/kariya `User-Agent`. - **Rank-rank mai karfin gadanduniya** — masu kai hari suna tsara jerin bubuwan ta musamman don taukewa CDN kuma bugi asali-jiya. - **Buƙatun rashin daidai ko maimaita** — kayi daidai abubuwa, rashin headers, babu cookies, babu kyauta. - **Babu dalilin kasuwanci** — babu yaƙi, sake kera, ko bubuwan zazzagen mai sanin tushe ba, kuma yana bayyana nan take maimakon tashi har. ## Alama cewa zazzage mara-ƙarfi ne - **Dalilin saura** — yaƙi marketing, bayanan fashewa, cewa abin jita, ko bubuwan zazzagen daga tushe da aka sani. - **Hanyoyin masu zazzage na gaskiya** — zazzage ya yi zuwa hanyoyin gaskiya (tsarewa -> kaya -> saye), ma'amala cache, kuma yana ɗauka cookies da daban-daban masu sake buhari. - **Tashi daidai** — nauyi ya gida kuma ya fakare maimakon tsuda ga bango nan take. ## Yadda zaka yanke shawara Kada ka tofa lissafi adadi. **Jiya baselines** don buƙatun-per-makonni, geo-yada, cache-hit-rank, kuma daidaita-rank, sannan aiki **anomaly tare** a gida su. [[CODE_1]] Karantin shine **daidaita**: zazzage na gaske ya tashi kasuwanci matukan yin sanye; yaƙi ya tashi jiya maimakon saye su dai. ## Me ya sa ya maista Kasaita maimaiti biyu daidai a jiya da taskunan. Ba da ruwa jingina kuma daidaita-daidaita shi ya tsufa masu karanta; ba da yaƙi kama mara-ƒarfi ya faɗi asali-jiya. Baselining da daidaita matukan ka ba shi jiha daidai kuma da sauri, wajanda shine gida na gamowa.Site Reliability & Operations#ddosMiddle
Menene layukan kariya DDoS, da kuma abin da kowane yana kula da shi?Site Reliability & Operations#ddosMiddle
Inda kuma ta yaya kuke daidaita iyakance jerin bukatun (rate limiting)?Site Reliability & Operations#rate-limitingMiddle
Menene bambanci tsakanin Layer 7 da Layer 3/4 DDoS attacks, kuma me yasa mitigations ya bambanta?Site Reliability & Operations#ddosSenior
Yaya zaka gina DDoS incident response runbook?Site Reliability & Operations#ddosSenior