java.net: The Open Road: java.nio.file - Add on top of that sexier new I/O features, such as watch lists, true asynchronous I/O, and virtual file systems, and Java 7 may finally have a modern foundation for input and output on which the next generation of clients, servers, and desktop apps can b InfoQ: Agile Project Management: Lessons Learned at Google - A retrospective on Google's first Scrum implementation. Jeff Sutherland visited Google to do an analysis of the first Google implementation of Scrum on one of their largest distributed projects. Their strategy for inserting Scrum step by step into the Goo Coding Horror: Why Can't Microsoft Ship Open Source Software? - It's a shame, because the best way to "beat" open source is to join 'em — to integrate with and ship open source components as a part of your product. Unfortunately, that's the one route that Microsoft seems hell bent on never following. Allway Sync: Free File Synchronization, Backup, Data Replication, PC Sync Software, Freeware, File Sync, Data Synchronization Software - Allway Sync uses innovative synchronization algorithms to synchronize your data between desktop PCs, laptops, USB drives and more. Allway Sync combines bulletproof reliability with an extremely easy-to-use interface. InfoQ: Enterprise Batch Processing with Spring - In this presentation from QCon San Francisco 2007, Wayne Lund discusses batch processing, Spring Batch objectives and features, scenarios for using Spring Batch, Spring Batch infrastructure and architecture, scaling Spring Batch, example Spring Batch code InfoQ: Google Releases Open Source Web Application Security Assessment Tool - Google has announced the open source release of one of their internal security tools "ratproxy". The proxy analyzes problems such as cross-site script inclusion threats, insufficient cross-site request forgery defenses, caching issues, cross-site scriptin Netflix Player source code released - Hack a Day - The Netflix Player continues to gain in popularity. Roku has finally released the GPL code for their Netflix Player. Just today Forbes published that Roku would roll out a software update allowing it to stream from other online services Build Ajax applications with Ext JS - Ext JS is a powerful JavaScript library that simplifies Async JavaScript + XML (Ajax) development through the use of reusable objects and widgets. This article introduces Ext JS, providing an overview of the object-oriented design concepts behind it Seymour Hersh On Covert Operations In Iran : NPR - Investigative journalist Seymour Hersh believes that the United States may be closer to armed conflict with Iran than previously imagined. He writes about Congress' funding of covert military operations in the upcoming issue of The New Yorker. Oracle reveals BEA roadmap | InfoWorld | News | 2008-07-01 | By Paul Krill - The BEA Weblogic Server Java application server "becomes Oracle's strategic J2EE container," Kurian said. It has been integrated with Oracle technologies like Oracle TopLink for Java persistence and Oracle Coherence grid capabilities. InfoQ: Building Large AJAX Applications with GWT 1.4 and Google Gears - In this presentation from QCon San Francisco 2007, Rajeev Dayal discusses building applications with GWT and Google Gears. Topics discussed include an overview of GWT, integrating GWT with other frameworks, GWT 1.4 features, developing large GWT applicati Ext JS - Integrating Google Maps API With ExtJS - Theres no doubt that Google has some interesting and very useful JavaScript API’s - most of which I end up using over and over again. So why not package them up into an Ext component?
Tags: agile, ajax, api, appserver, AquaLogic, architecture, batch, BEA, business, development, esb, extjs, gears, google, googlemaps, gwt, hacks, http, infoq, J2EE, java, java7, javascript, methodology, microsoft, netflix, news, nio, opensource, oracle, politics, presentation, programming, projectmanagement, rant, roku, screencast, scrum, security, SOA, software, spring, SpringFramework, streaming, sync, tools, usa, utilities, video, WebLogic, windows, xssPosts tagged as:
xss
Daily del.icio.us for January 14th
Tweak your Ubuntu desktop with Ubuntu Tweak - Download Squad - Ubuntu Tweak makes it easy to customize your desktop environment and a handful of other settings like your startup session and power management settings. The utility runs on Ubuntu 7.04 and 7.10 and could make life a lot easier on Linux/Ubuntu newbies. Project Euler - Project Euler is a series of challenging mathematical/computer programming problems that will require more than just mathematical insights to solve. Although mathematics will help you arrive at elegant and efficient methods, the use of a computer and prog Michael?s Random Thoughts » The Pitfalls of Java as a First Programming Language - A Response - Blaming the first language for a failure to design a good curriculum where other necessary languages are taught appropriately is a naïve argument that misses the point and isn?t helping anyone bobdc.blog: Scraping and linked data - Somehow, code monkeys surrounded by earth-toned cubicle fabric think that it makes them resemble DJs surrounded by crates of vinyl if they use musical buzzwords to refer to the act of combining multiple things into a new one datejs - A JavaScript Date Library - Datejs is an open source JavaScript Date library for parsing, formatting and processing. Microsoft MIX07 - How to Make AJAX Applications Scream on the Client - A recent presentation by Cyra Richardson, Senior Program Manager Lead on the IE team, at MIX 2007 on Making Ajax Applications Scream on the Client went into detail on how developers should approach the problem of making their applications perform well on HTML Purifier 3.0.0 released - HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a thoroughly audited, secure yet permissive whitelist, it will also make sure your documents are st A BigDecimal Cookbook for financial calculations - Computations that yielded amounts, quantities, adjustments, and many other things were generally done with little or no attention to the special precision and rounding concerns that arise when dealing with financial issues. Apache Lenya - Open Source Content Management (Java/XML) v2.0 - The Apache Lenya development community is very proud to announce the 2.0 release of Apache Lenya. Apache Lenya is an Open Source Java/XML Content Management System and comes with revision control, site management, scheduling, search, WYSIWYG editors, and Lightview - Lightview was built to change the way you overlay images on a website. Best Color Tools For Web Designers - Determining the core color for a web project could be easy but finding the right alternatives to match the core can sometimes be difficult. That?s where the color tools play its roles. Color tools help you determine matching color or even suggest sets o
Tags: ADA, advocacy, ajax, algorithms, apache, api, article, bigdecimal, browser, calendar, cms, code, collaboration, color, ComputerScience, criptaculous, curriculum, data, database, date, design, development, dhtml, ecm, education, effects, gallery, geek, graphics, howto, html, Humor, ie, infoq, interesting, java, javascript, layout, learning, library, lightbox, Linux, mashup, mathematics, microsoft, money, opensource, performance, php, presentation, programming, prototype, purifier, puzzles, scraping, scripting, scripts, security, tools, tweaks, ubuntu, web, Web2.0, webdesign, webservices, workflow, xhtml, xml, xslt, xssRelated posts
Daily del.icio.us for January 13th through January 14th
Tweak your Ubuntu desktop with Ubuntu Tweak - Download Squad - Ubuntu Tweak makes it easy to customize your desktop environment and a handful of other settings like your startup session and power management settings. The utility runs on Ubuntu 7.04 and 7.10 and could make life a lot easier on Linux/Ubuntu newbies. Project Euler - Project Euler is a series of challenging mathematical/computer programming problems that will require more than just mathematical insights to solve. Although mathematics will help you arrive at elegant and efficient methods, the use of a computer and prog Michael?s Random Thoughts » The Pitfalls of Java as a First Programming Language - A Response - Blaming the first language for a failure to design a good curriculum where other necessary languages are taught appropriately is a naïve argument that misses the point and isn?t helping anyone bobdc.blog: Scraping and linked data - Somehow, code monkeys surrounded by earth-toned cubicle fabric think that it makes them resemble DJs surrounded by crates of vinyl if they use musical buzzwords to refer to the act of combining multiple things into a new one datejs - A JavaScript Date Library - Datejs is an open source JavaScript Date library for parsing, formatting and processing. Microsoft MIX07 - How to Make AJAX Applications Scream on the Client - A recent presentation by Cyra Richardson, Senior Program Manager Lead on the IE team, at MIX 2007 on Making Ajax Applications Scream on the Client went into detail on how developers should approach the problem of making their applications perform well on HTML Purifier 3.0.0 released - HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a thoroughly audited, secure yet permissive whitelist, it will also make sure your documents are st A BigDecimal Cookbook for financial calculations - Computations that yielded amounts, quantities, adjustments, and many other things were generally done with little or no attention to the special precision and rounding concerns that arise when dealing with financial issues. Apache Lenya - Open Source Content Management (Java/XML) v2.0 - The Apache Lenya development community is very proud to announce the 2.0 release of Apache Lenya. Apache Lenya is an Open Source Java/XML Content Management System and comes with revision control, site management, scheduling, search, WYSIWYG editors, and Lightview - Lightview was built to change the way you overlay images on a website. Best Color Tools For Web Designers - Determining the core color for a web project could be easy but finding the right alternatives to match the core can sometimes be difficult. That?s where the color tools play its roles. Color tools help you determine matching color or even suggest sets o HtmlUnit vs HttpUnit « A Public Scratchpad - If you?re using HttpUnit for legacy reasons, it?s a fairly solid package, but don?t expect to get much support. If you?re starting a new project and are trying to decide between these two frameworks, HtmlUnit wins hands down. It has the features,
Tags: ADA, advocacy, ajax, algorithms, apache, api, article, bigdecimal, browser, calendar, cms, code, collaboration, color, ComputerScience, criptaculous, curriculum, data, database, date, design, development, dhtml, ecm, education, effects, framework, gallery, geek, graphics, howto, html, htmlunit, httpunit, Humor, ie, infoq, interesting, java, javascript, JMeter, JWebUnit, layout, learning, library, lightbox, Linux, mashup, mathematics, microsoft, money, opensource, performance, php, presentation, programming, prototype, purifier, puzzles, scraping, scripting, scripts, security, Selenium, sxhtml, testing, tools, tweaks, ubuntu, web, Web2.0, webdesign, WebDriver, webservices, workflow, xml, xslt, xssRelated posts
Daily del.icio.us for Sep 24, 2006
SecuriTeam - SQL Injection Walkthrough
The following article will try to help beginners with grasping the problems facing them while trying to utilize SQL Injection techniques, to successfully utilize them, and to protect themselves from such attacks.
Related posts
Daily Del.icio.us for Feb 24, 2006
Web Service Security - Scenarios, Patterns, and Implementation Guidance for Web Services Enhancements (WSE) 3.0 » This guide provides a scenario-driven approach to demonstrate where different security patterns are successful, combined with a series of decision matrices to assist you in applying your own criteria for using Web service security patterns in your environ Dan Sellers's WebLog : Microsoft Release new Anti-XSS tool » Microsoft just released a new Anti-XSS tool that works with .NET Framework 1.0, 1.1 and 2.0. It follows an Accept-only approach in which this tool looks for a finite set of valid input and everything else is considered invalid. Previous links
Tags: security, webservices, xss