-
PHP security is scary!
I knew that PHP limits the amount of memory that one script can allocate, so life is good, right? Right? Wrong! Reading the documentation it states: Changeable – PHP_INI_ALL, meaning that you can change it using ini_set from the script itself. Even worse, it goes on to say: “Note that to have no memory limit,…
-
Random Java blogging
From the JUnit FAQ: Each test runs in its own test fixture to isolate tests from the changes made by other tests. That is, tests don’t share the state of objects in the test fixture. Because the tests are isolated, they can be run in any order. Very important to keep in mind if you…
-
Instruction Manual for Life
Via Neural Market Trends: It is worth watching, and it went in a totally different direction than I anticipated after the first seconds.
-
Google broke the Internet!
Short summary: Google maintains a list of “malicious URL’s”. This list is used both to offer warnings on the search results and to warn users in third-party applications (like Firefox 3) via the Google Safe Browsing API. The format of the blacklist is such that arbitrary subelements of the URL can be used. This is…
-
Reason #341 for using stackoverflow.com
I’ve written about stackoverflow.com, a place to ask and answer programming questions. And here is an other reason to use it: they have great error pages 🙂 And today I’ve learned something new on SO from Oliver Giesen (also, his SO profile): you can’t delete executable files which are “in use” (programs are being run…
-
You say features, I say (possible) vulnerabilities
I was listening to a recent MindOfRoot podcast (good podcast BTW if you are interested in IT type topics) which included an interview with a Microsoftie about WS-MAN (sorry for not recalling the exact name of the person). If you don’t know (I didn’t) WS-MAN stands for (drum roll please): web services management. That’s right…
-
Can you test AV using VirusTotal?
Just a little post to bait Kurt 🙂 Many people are up in arms about the idea of submitting a sample to VirusTotal and interpreting the (usually rather poor) detection count. A few links to get you started: virustotal usage FAIL why perform virustotal based av tests? “Only X Out of 32 Antivirus Products Detect…
-
Gimme Dope Obama
Via Assarbad’s blog: The original is from SWR3, host of other great shows like Wie war der Tag, Liebling?. Also, some new blogs I’ve subscribed to: Nothing for Ungood Threat Research Craigrow DebugInfo Black Magic Code Also, somebody seems to have had a lot of free time: (The idea is that you can put links…
-
Mixed links
(Most of these links are from the GSD blog) The Dude – a network scanning and mapping software. Free and available for Linux! SmartSniff – not very interesting, but I found out that you can use raw sockets to sniff traffic (not just to craft arbitrary traffic). 4 Tools You Need To Predict The Death…
-
The original SPAM video
From Monthy Python: