-
Mixed links
From taint.org: AWS running Mathematica. Mathematica was one of those programs which I dabbled with in university and found it incredibly cool, especially given my limited mathematical knowledge… Several sites have referenced the post on SecTheory about the influence of web pages on power consumption (for example the Frequency X Blog). However I’m still not…
-
Everything old is new again – SMOG
Warning! The site which the script uses to provide the service contains a malicious iframe. While most probably the site itself is not malicious, I don’t recommend using the script below until the issues have been cleared up. If you included it in your site, please disable it until the problems have been cleared up.…
-
If you have problems using SVN with Eclipse…
make sure that you’ve installed the JavaHL Adapter. Otherwise you will get messages saying: Unable to load default SVN Client JavaHL seems to be the actual bingding to the Subversion, so it is really a mystery to me why it isn’t marked as a dependency for subeclipse… Related blogposts which pointed me in the right…
-
Curious Eclipse (Java?) bug…
It seems that watchpoints are not triggered if the field is changed using reflection. A simple test program to demonstrate this: import java.lang.reflect.*; public class ReflectMe { public static int foo = 1; //*1 public void test() throws Exception { foo = 2; //*2 Class c = Class.forName(“ReflectMe”); Field f = c.getField(“foo”); f.setInt(this, 10); //*3…
-
Please welcome a new blogger…
Tim Starling from Wikipedia. In his first blog post he talks about the challenges involved in running a website securely where users can upload arbitrary content. It is very cool and very frightening the same time (because it makes you wonder: how many of the web applications out there are verified to this degree). One…
-
Security is not on most people’s mind…
I was walking trough a mall when I realized the easiest way to get the floorplan for buildings (banks, hotels, any public area): evacuation plans. In Romania buildings obliged by law to display these publicly. And they do, including the backrooms… (I don’t know the laws in other countries, but I would imagine that they…
-
Google browser security handbook
I’ve just finished reading the browser security handbook written by Michal Zalewski and now my head hurts :-). This is one of the best sources of information out there for this topic, and if you do anything related to the web, you should read it! The information was out there, but distributed in a myriad…
-
The importance of understanding – take 2
As you probably know by now, one of my pet peeve is people who pretend to know more than they actually do, and (because they get access to the right channels) spread misinformation. The latest example comes via the Infosec Ramblings blog: a series of two articles talking about “UAC Virtualization”. <rant>The term is “File…