-
Everything old is new again – SMOG
Warning! The site which the script uses to provide the service contains a malicious iframe. While most probably the site itself is not malicious, I don’t recommend using the script below until the issues have been cleared up. If you included it in your site, please disable it until the problems have been cleared up.…
-
If you have problems using SVN with Eclipse…
make sure that you’ve installed the JavaHL Adapter. Otherwise you will get messages saying: Unable to load default SVN Client JavaHL seems to be the actual bingding to the Subversion, so it is really a mystery to me why it isn’t marked as a dependency for subeclipse… Related blogposts which pointed me in the right…
-
Curious Eclipse (Java?) bug…
It seems that watchpoints are not triggered if the field is changed using reflection. A simple test program to demonstrate this: import java.lang.reflect.*; public class ReflectMe { public static int foo = 1; //*1 public void test() throws Exception { foo = 2; //*2 Class c = Class.forName(“ReflectMe”); Field f = c.getField(“foo”); f.setInt(this, 10); //*3…
-
Please welcome a new blogger…
Tim Starling from Wikipedia. In his first blog post he talks about the challenges involved in running a website securely where users can upload arbitrary content. It is very cool and very frightening the same time (because it makes you wonder: how many of the web applications out there are verified to this degree). One…
-
Security is not on most people’s mind…
I was walking trough a mall when I realized the easiest way to get the floorplan for buildings (banks, hotels, any public area): evacuation plans. In Romania buildings obliged by law to display these publicly. And they do, including the backrooms… (I don’t know the laws in other countries, but I would imagine that they…
-
Google browser security handbook
I’ve just finished reading the browser security handbook written by Michal Zalewski and now my head hurts :-). This is one of the best sources of information out there for this topic, and if you do anything related to the web, you should read it! The information was out there, but distributed in a myriad…
-
On a lighter note
One (of many) very good scenes from Casablanca: “I’m shocked, shocked that gambling is going on here”:
-
The importance of understanding – take 2
As you probably know by now, one of my pet peeve is people who pretend to know more than they actually do, and (because they get access to the right channels) spread misinformation. The latest example comes via the Infosec Ramblings blog: a series of two articles talking about “UAC Virtualization”. <rant>The term is “File…
-
Installing guest additions for VirtualBox with Ubuntu 8.10
I installed VirtualBox (the OSS version) from the Ubuntu repos (in hindsight it may have been better to use the VB repos, but I’m just lazy), and when I tried to install the guest additions in a WinXP VM, it complained that it can’t find the VBoxGuestAdditions.iso. The solution: Download the corresponding iso from here…
-
Making sure that your favicon works with Blogger
My favicon stopped showing up some time ago on my blogger page, but until now I was just too lazy to investigate. Turns out that blogger adds the following line in the header: <link href=’http://www.blogger.com/favicon.ico’ rel=’icon’ type=’image/vnd.microsoft.icon’/> Which overrides my favicon setting. The solution? Put your favicon declaration after the following line in your template:…