Domain: slashdot.org
Stories and comments across the archive that link to slashdot.org.
Stories · 37,380
-
Researchers Hijack Storm Worm To Track Profits
An anonymous reader points out a story in the Washington Post, which begins: "A single response from 12 million e-mails is all it takes for spammers to turn annual profits of millions of dollars promoting knockoff pharmaceuticals, according to an unprecedented new study on the economics of spam. Over a period of about a month in the Spring of 2008, researchers at the University of California, San Diego and UC Berkeley sought to measure the conversion rate of spam by quietly infiltrating the Storm worm botnet, a vast collection of compromised computers once responsible for sending an estimated 20 percent of all spam." The academic paper (PDF) is also available. We've previously discussed another group of researchers who were able to infiltrate the botnet for a different purpose. -
Yahoo Interested In a Microsoft Buyout, But Microsoft Isn't
Linux Blog writes "The Google-Yahoo advertising deal has been rejected by the Department of Justice, and Google has pulled the plug on a search-ad partnership with Yahoo that would have given Yahoo major new revenue, but that raised antitrust concerns. Now, Yahoo has said the 'For Sale' sign is still on its front lawn and that Microsoft should buy the company. The internet portal's co-founder and CEO Jerry Yang made this comment despite the fact Yahoo rejected a $33 a share offer from Microsoft back in May. What a huge loss for the share holders. Microsoft was quick to respond that their buyout efforts were a thing of the past, but left the door open to a search partnership." -
Yahoo Interested In a Microsoft Buyout, But Microsoft Isn't
Linux Blog writes "The Google-Yahoo advertising deal has been rejected by the Department of Justice, and Google has pulled the plug on a search-ad partnership with Yahoo that would have given Yahoo major new revenue, but that raised antitrust concerns. Now, Yahoo has said the 'For Sale' sign is still on its front lawn and that Microsoft should buy the company. The internet portal's co-founder and CEO Jerry Yang made this comment despite the fact Yahoo rejected a $33 a share offer from Microsoft back in May. What a huge loss for the share holders. Microsoft was quick to respond that their buyout efforts were a thing of the past, but left the door open to a search partnership." -
Simulations Predict Where We Can Find Dark Matter
p1234 writes with this excerpt from the Max Planck Institute for Astrophysics: "Simulations by the Virgo team show how the Milky Way's halo grew through a series of violent collisions and mergers from millions of much smaller clumps that emerged from the Big Bang. ... If Fermi does detect the predicted emission from the Milky Way's smooth inner halo, then it may, if we are lucky, also see gamma-rays from small (and otherwise invisible) clumps of dark matter which happen to lie particularly close to the Sun. ... The largest simulation took 3.5 million processor hours to complete. Volker Springel was responsible for shepherding the calculation through the machine and said: 'At times I thought it would never finish.' Max Planck Director, Professor Simon White, remarked that 'These calculations finally allow us to see what the dark matter distribution should look like near the Sun where we might stand a chance of detecting it.'" We discussed a related simulation a few months ago. -
Website Optimization
Michael J. Ross writes "As Internet users' expectations continue to ratchet upwards, it is increasingly essential that every Web site owner maximize the chances that those users will find the site in question, and, once found, that the site will perform well enough that those visitors become customers or members, and recommend the site to others. Key elements of a successful strategy include optimization for search engines, pay-per-click advertising, and visitor conversion, as well as responsive Web pages and fine-tuning of all the above, using various metrics. These topics and others are explored in Website Optimization: Speed, Search Engine & Conversion Rate Secrets by Andrew B. King." Keep reading for the rest of Michael's review. Website Optimization author Andrew B. King pages 394 publisher O'Reilly Media rating 8/10 reviewer Michael J. Ross ISBN 0596515081 summary Techniques for increasing a site's SEO, conversion rates, and speed. The book was published by O'Reilly Media on 15 July 2008, under the ISBNs 0596515081 and 978-0596515089. Website Optimization is organized into two major parts: search engine marketing optimization and Web performance optimization. The book's material, spanning 394 pages, is divided into 10 chapters, covering a range of topics: natural search engine optimization, an SEO case study, pay-per-click optimization, a case study thereof, conversion rate optimization, Web page performance, CSS optimization, AJAX optimization, server- and client-side performance techniques, and Web site metrics. The book begins with a forward by Jim Sterne, a Web marketing and metrics consultant, followed by a preface in which Andy King provides an overview of what is to follow, as well as credits to four other individuals. These credits are confusing, because they do not make clear for what exactly the individuals are being credited! The reader will be left wondering: Are these people the technical editing team? Or did they write some of the material in the book, without byline? Or did they only provide research material to the primary author? In personal correspondence to me, Andy King mentions that this book was "written by a team of experts let [sic] by me." Thus, they are apparently co-authors, but not identified as so in the book.
The first five chapters of the book focus on optimization of search engine marketing (SEM), which comprises search engine optimization (SEO), pay-per-click (PPC) advertising, and conversion rate optimization (CRO). The author(s) begin by demonstrating, through cited statistics, just how critical it is for Web sites to appear within the first few search engine result pages (SERPs), otherwise the sites will probably not be found by the roughly 90 percent of Internet users who do not bother looking at any subsequent pages. This documented selectivity should alone serve as an energizing wake-up call to any Web site owners who — either through ignorance or laziness — make no effort to improve their rankings within the major search engine results. The first chapter delineates the most common SEO mistakes, as well as basic techniques for achieving higher rankings. The two categories could have been combined, simply by inverting the language of the first category; for instance, "develop an adequate number of popular inbound links" could replace "[avoid] a lack of popular inbound links." The bulk of the SEO information will be familiar to most Web marketing veterans, though even they should glean some new pointers. All of the advice is correct, up-to-date, and worthy of implementation on any site — existing or under development. However, the "Step 3" and "Step 4" in Figures 1-6 and 1-7 may be confused by some readers with the identical section headings in the book's text. Note also that the KEI of "84,100" should instead read "84.100" (page 17). Lastly, the first and third sample URIs are missing GET keys (page 29).
The strategies for natural search engine optimization, presented in the first chapter, are illustrated in the second — through a case study of the SEO overhaul of a Philadelphia dental practice's Web site. The original version of the site was lacking keyword-rich headers, body copy, inbound links, etc. (In addition, the dentist's e-mail address was revealed to spam harvesters in plain text. Andy King mentions the use of a contact form to resolve this problem, but does not mention that there are methods of displaying an e-mail address to human visitors, while hiding it from spambots.) This site's search engine results were dramatically boosted through two iterations of SEO fine-tuning, redesign, and release. While this particular dentist's site was greatly improved by the work described in this chapter, the book itself is not improved by inclusion of said chapter, since no additional SEO techniques are offered to the reader, and the first chapter already had enough HTML code snippets to exemplify the concepts discussed. In fact, the case study results should have been boiled down to a few paragraphs and better presented as a sidebar at the end of the first chapter, or moved to the back as an appendix. This latter approach is further supported by the fact that the second chapter illustrates best practices discussed in chapters that the reader has presumably yet to read (5 and 6). The material that composes the actual last sidebar in the first chapter — on metadata and microformats — could have been relegated to an appendix.
Search engine-based ad campaigns are the most important elements in the marketing strategies of countless online vendors, and in Chapter 3, Andy King explains how to increase a site's pay-per-click results, click-through rates (CTRs), and conversion rates. He begins by explaining some key terms and concepts, which should be quite helpful for most readers — especially given how much the online marketing world is laden with terminology and acronyms. The chapter reviews the advertising programs of the three top search engines, and discusses PPC optimization for those programs, with special emphasis given to Google AdWords. Like the first chapter of the book, this one does a competent job of explaining and illustrating the key ideas, and making clear topics that can be quite daunting to anyone new to the field. However, additional clarification of some terms would be helpful, otherwise many readers may be uncertain as to what is meant by terms such as "negative keywords," which unfortunately are left undefined. Even phrases outside the online marketing industry, such as "second-price sealed bidding system," could confuse countless readers. More importantly, some of the material is discussed at a level higher than what would be really usable for most site owners and developers — in contrast to the first chapter, which generally presented more actionable details. In fact, for readers unfamiliar with all the factors involved in running a PPC ad campaign, the early portion of this chapter could prove quite bewildering. Returning to the issue of how best to present case studies, the "Bid Optimization in Action: The E-Grooming Book Example" section shows how illustrative examples can be presented much more concisely. In contrast, Chapter 4, which consumes eight pages, shows how not to illustrate concepts already discussed.
Considerable SEO and PPC efforts could pay off in the form of a huge increase in traffic to one's Web site. But all of that would be in vain if there were no corresponding increase in turning those visitors into customers. Chapter 6 is devoted to conversion rate optimization, and presents some key elements of persuading online prospects, as well as the top 10 factors for maximizing one's conversion rates, from an online marketing and sales perspective. This chapter is rich in material that should inspire site owners to critically reevaluate their sites' contents, as well as their competitors'.
The sixth chapter, on Web page optimization, commences the second part of the book, and explores the most common pitfalls that lead to poor site performance, as well as ten techniques for increasing page display speeds — many of them based upon Steve Souders's book High Performance Web Sites. Andrew King correctly notes that this optimization can result in increased profits, customer satisfaction, and accessibility. However, he also claims that it will decrease costs as well as improve site maintainability and search engine rankings. He should have made it clear that faster page loading per se will not provide those last three benefits, but rather those are potential secondary gains that result from changes to code and other factors with the goal of decreasing page load times for site visitors. Nonetheless, even the most experienced Web developers should find one or more ideas in this chapter for reducing the total bandwidth consumption of the pages they create — particularly for anyone serving video content, which receives substantial coverage in this chapter. Chapter 7, on CSS optimization, follows a pattern similar to its predecessor, by presenting ten methods for improving one's CSS code, as helpful rules. The advice is spot-on, and well illustrated with examples. The suggested methods are preceded by brief discussion of reset rules, including mention of the (differing) reset rules advocated by Eric Meyer and Yahoo. It would be interesting to have learned the author's perspective on the technical differences, and why the author chose one set of rules over another. Incidentally, the paragraph describing the section, immediately below the "Tip #1" header, should have been located above it. Also, on page 195, " | inherit" should have been explained, or, better yet, excised. Lastly, the "|" appears to be missing from the similar instances on the three subsequent pages.
During the past several years, there has been a huge increase in the usage of Asynchronous JavaScript and XML (AJAX) to reduce dynamic Web page reloading, and to make Web sites behave more like desktop applications. Unfortunately, there are pitfalls in this approach, and Andy King discusses them in Chapter 8, in addition to numerous best practices for minimizing these problems within one's own AJAX code. Incidentally, in the tip on page 225, the author states that the sample AJAX application will not run on your desktop; this apparently means that it cannot run on a local Web server. An explanation as to why, would most likely be of interest to the typical reader. Prior to getting into the details of JavaScript optimization, some tips on evaluating and choosing an AJAX library are presented.
Chapter 9 covers additional optimization techniques — aside from the Web page and code techniques covered earlier — on both the server and client side. The former category consists of parallel downloads, frequent caching, HTTP compression, delta encoding, and rewriting URIs. The latter category consists of load delaying, caching of off-site files on the server to be loaded locally, JavaScript packing, and inlining images.
The last chapter delves into Web site metrics for measuring the effectiveness of Web sites and changes made to them. The author explains some of the most popular and telling metrics, the leading Web analytics software (both Web server log analysis and JavaScript page tagging), and how they can be used for improving one's search marketing strategies and results. The chapter concludes with a detailed discussion of Web performance metrics — i.e., measures of page load times, oftentimes broken out by site, request sizes, and content type. The material clearly shows that there are a great many options for testing the optimization techniques presented in all of the earlier chapters.
There are two Web sites that have additional information about the book: O'Reilly's book page offers book descriptions, the table of contents, and confirmed and reported errata (of which there are no significant ones, as of this writing). There is a more substantial author book site, which has chapter summaries, full color figures, worksheets, all the sample code, and links to external reviews.
In general, the book achieves its goals. Aside from the occasional marketing term that will most likely puzzle the majority of readers (more on that in a moment), the writing is clear and the examples cited are applicable. The illustrations created and chosen for this book are more than adequate in quality and number, although some of the graph labels would be confusing if not clarified by the text, e.g., "Mean Fixation Duration" (page 2). Web site statistics and other data are well referenced throughout the manuscript.
On the other hand, the brief chapter summaries add nothing new to the reader's understanding, and could be disposed of without loss to the book's usefulness. Chapter summaries are more appropriate for books whose material is far more lengthy and dense, thus justifying summaries as a way to convey the highlights to the reader. As noted earlier, the case study chapters similarly add very little value, if any, to Website Optimization, and could in future editions be folded into the relevant chapters, as sidebars, or at least made much more concise and moved to the back as appendices. There is a fair bit of repetition, in the form of allusions to techniques that are covered in more detail in earlier or later chapters, and other times in the form of redundancy within chapters. For instance, the sidebar on page 156, concerning CSS and JavaScript placement, consists of a uselessly brief mention of information covered later in more detail. Trimming away all of the repeated material and the chapter summaries, and folding the case studies into the relevant chapters, would make the book leaner and a faster read. Furthermore, some of the phrases are not entirely clear in their meaning, at least to readers who are not SEO marketers. For instance, "flagged sites" (page 12) — flagged for what? Some of the phrasing is confusing, if not downright bizarre, e.g. "information scent" (page 2) and "the scent of a link" (page 122)
Admittedly, a Web site owner could learn much of this information by reading numerous articles freely available online. But most businesspeople value their time much more highly than that, and would probably find a significant amount of repetition among those articles, because they tend to "borrow" a lot from one another. This is especially true in the cases of writers who have never done SEO optimization to a Web site themselves, or run a PPC campaign.
Aside from the aforesaid weaknesses, Website Optimization is an engaging, comprehensive, and valuable resource for anyone who wishes to improve the online marketing results of their own businesses Web sites or those of the clients they support. Online business owners and Web developers unfamiliar with core SEO and site optimization techniques, are urged to read this book.
Michael J. Ross is a Web developer, writer, and freelance editor.
You can purchase Website Optimization from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
Website Optimization
Michael J. Ross writes "As Internet users' expectations continue to ratchet upwards, it is increasingly essential that every Web site owner maximize the chances that those users will find the site in question, and, once found, that the site will perform well enough that those visitors become customers or members, and recommend the site to others. Key elements of a successful strategy include optimization for search engines, pay-per-click advertising, and visitor conversion, as well as responsive Web pages and fine-tuning of all the above, using various metrics. These topics and others are explored in Website Optimization: Speed, Search Engine & Conversion Rate Secrets by Andrew B. King." Keep reading for the rest of Michael's review. Website Optimization author Andrew B. King pages 394 publisher O'Reilly Media rating 8/10 reviewer Michael J. Ross ISBN 0596515081 summary Techniques for increasing a site's SEO, conversion rates, and speed. The book was published by O'Reilly Media on 15 July 2008, under the ISBNs 0596515081 and 978-0596515089. Website Optimization is organized into two major parts: search engine marketing optimization and Web performance optimization. The book's material, spanning 394 pages, is divided into 10 chapters, covering a range of topics: natural search engine optimization, an SEO case study, pay-per-click optimization, a case study thereof, conversion rate optimization, Web page performance, CSS optimization, AJAX optimization, server- and client-side performance techniques, and Web site metrics. The book begins with a forward by Jim Sterne, a Web marketing and metrics consultant, followed by a preface in which Andy King provides an overview of what is to follow, as well as credits to four other individuals. These credits are confusing, because they do not make clear for what exactly the individuals are being credited! The reader will be left wondering: Are these people the technical editing team? Or did they write some of the material in the book, without byline? Or did they only provide research material to the primary author? In personal correspondence to me, Andy King mentions that this book was "written by a team of experts let [sic] by me." Thus, they are apparently co-authors, but not identified as so in the book.
The first five chapters of the book focus on optimization of search engine marketing (SEM), which comprises search engine optimization (SEO), pay-per-click (PPC) advertising, and conversion rate optimization (CRO). The author(s) begin by demonstrating, through cited statistics, just how critical it is for Web sites to appear within the first few search engine result pages (SERPs), otherwise the sites will probably not be found by the roughly 90 percent of Internet users who do not bother looking at any subsequent pages. This documented selectivity should alone serve as an energizing wake-up call to any Web site owners who — either through ignorance or laziness — make no effort to improve their rankings within the major search engine results. The first chapter delineates the most common SEO mistakes, as well as basic techniques for achieving higher rankings. The two categories could have been combined, simply by inverting the language of the first category; for instance, "develop an adequate number of popular inbound links" could replace "[avoid] a lack of popular inbound links." The bulk of the SEO information will be familiar to most Web marketing veterans, though even they should glean some new pointers. All of the advice is correct, up-to-date, and worthy of implementation on any site — existing or under development. However, the "Step 3" and "Step 4" in Figures 1-6 and 1-7 may be confused by some readers with the identical section headings in the book's text. Note also that the KEI of "84,100" should instead read "84.100" (page 17). Lastly, the first and third sample URIs are missing GET keys (page 29).
The strategies for natural search engine optimization, presented in the first chapter, are illustrated in the second — through a case study of the SEO overhaul of a Philadelphia dental practice's Web site. The original version of the site was lacking keyword-rich headers, body copy, inbound links, etc. (In addition, the dentist's e-mail address was revealed to spam harvesters in plain text. Andy King mentions the use of a contact form to resolve this problem, but does not mention that there are methods of displaying an e-mail address to human visitors, while hiding it from spambots.) This site's search engine results were dramatically boosted through two iterations of SEO fine-tuning, redesign, and release. While this particular dentist's site was greatly improved by the work described in this chapter, the book itself is not improved by inclusion of said chapter, since no additional SEO techniques are offered to the reader, and the first chapter already had enough HTML code snippets to exemplify the concepts discussed. In fact, the case study results should have been boiled down to a few paragraphs and better presented as a sidebar at the end of the first chapter, or moved to the back as an appendix. This latter approach is further supported by the fact that the second chapter illustrates best practices discussed in chapters that the reader has presumably yet to read (5 and 6). The material that composes the actual last sidebar in the first chapter — on metadata and microformats — could have been relegated to an appendix.
Search engine-based ad campaigns are the most important elements in the marketing strategies of countless online vendors, and in Chapter 3, Andy King explains how to increase a site's pay-per-click results, click-through rates (CTRs), and conversion rates. He begins by explaining some key terms and concepts, which should be quite helpful for most readers — especially given how much the online marketing world is laden with terminology and acronyms. The chapter reviews the advertising programs of the three top search engines, and discusses PPC optimization for those programs, with special emphasis given to Google AdWords. Like the first chapter of the book, this one does a competent job of explaining and illustrating the key ideas, and making clear topics that can be quite daunting to anyone new to the field. However, additional clarification of some terms would be helpful, otherwise many readers may be uncertain as to what is meant by terms such as "negative keywords," which unfortunately are left undefined. Even phrases outside the online marketing industry, such as "second-price sealed bidding system," could confuse countless readers. More importantly, some of the material is discussed at a level higher than what would be really usable for most site owners and developers — in contrast to the first chapter, which generally presented more actionable details. In fact, for readers unfamiliar with all the factors involved in running a PPC ad campaign, the early portion of this chapter could prove quite bewildering. Returning to the issue of how best to present case studies, the "Bid Optimization in Action: The E-Grooming Book Example" section shows how illustrative examples can be presented much more concisely. In contrast, Chapter 4, which consumes eight pages, shows how not to illustrate concepts already discussed.
Considerable SEO and PPC efforts could pay off in the form of a huge increase in traffic to one's Web site. But all of that would be in vain if there were no corresponding increase in turning those visitors into customers. Chapter 6 is devoted to conversion rate optimization, and presents some key elements of persuading online prospects, as well as the top 10 factors for maximizing one's conversion rates, from an online marketing and sales perspective. This chapter is rich in material that should inspire site owners to critically reevaluate their sites' contents, as well as their competitors'.
The sixth chapter, on Web page optimization, commences the second part of the book, and explores the most common pitfalls that lead to poor site performance, as well as ten techniques for increasing page display speeds — many of them based upon Steve Souders's book High Performance Web Sites. Andrew King correctly notes that this optimization can result in increased profits, customer satisfaction, and accessibility. However, he also claims that it will decrease costs as well as improve site maintainability and search engine rankings. He should have made it clear that faster page loading per se will not provide those last three benefits, but rather those are potential secondary gains that result from changes to code and other factors with the goal of decreasing page load times for site visitors. Nonetheless, even the most experienced Web developers should find one or more ideas in this chapter for reducing the total bandwidth consumption of the pages they create — particularly for anyone serving video content, which receives substantial coverage in this chapter. Chapter 7, on CSS optimization, follows a pattern similar to its predecessor, by presenting ten methods for improving one's CSS code, as helpful rules. The advice is spot-on, and well illustrated with examples. The suggested methods are preceded by brief discussion of reset rules, including mention of the (differing) reset rules advocated by Eric Meyer and Yahoo. It would be interesting to have learned the author's perspective on the technical differences, and why the author chose one set of rules over another. Incidentally, the paragraph describing the section, immediately below the "Tip #1" header, should have been located above it. Also, on page 195, " | inherit" should have been explained, or, better yet, excised. Lastly, the "|" appears to be missing from the similar instances on the three subsequent pages.
During the past several years, there has been a huge increase in the usage of Asynchronous JavaScript and XML (AJAX) to reduce dynamic Web page reloading, and to make Web sites behave more like desktop applications. Unfortunately, there are pitfalls in this approach, and Andy King discusses them in Chapter 8, in addition to numerous best practices for minimizing these problems within one's own AJAX code. Incidentally, in the tip on page 225, the author states that the sample AJAX application will not run on your desktop; this apparently means that it cannot run on a local Web server. An explanation as to why, would most likely be of interest to the typical reader. Prior to getting into the details of JavaScript optimization, some tips on evaluating and choosing an AJAX library are presented.
Chapter 9 covers additional optimization techniques — aside from the Web page and code techniques covered earlier — on both the server and client side. The former category consists of parallel downloads, frequent caching, HTTP compression, delta encoding, and rewriting URIs. The latter category consists of load delaying, caching of off-site files on the server to be loaded locally, JavaScript packing, and inlining images.
The last chapter delves into Web site metrics for measuring the effectiveness of Web sites and changes made to them. The author explains some of the most popular and telling metrics, the leading Web analytics software (both Web server log analysis and JavaScript page tagging), and how they can be used for improving one's search marketing strategies and results. The chapter concludes with a detailed discussion of Web performance metrics — i.e., measures of page load times, oftentimes broken out by site, request sizes, and content type. The material clearly shows that there are a great many options for testing the optimization techniques presented in all of the earlier chapters.
There are two Web sites that have additional information about the book: O'Reilly's book page offers book descriptions, the table of contents, and confirmed and reported errata (of which there are no significant ones, as of this writing). There is a more substantial author book site, which has chapter summaries, full color figures, worksheets, all the sample code, and links to external reviews.
In general, the book achieves its goals. Aside from the occasional marketing term that will most likely puzzle the majority of readers (more on that in a moment), the writing is clear and the examples cited are applicable. The illustrations created and chosen for this book are more than adequate in quality and number, although some of the graph labels would be confusing if not clarified by the text, e.g., "Mean Fixation Duration" (page 2). Web site statistics and other data are well referenced throughout the manuscript.
On the other hand, the brief chapter summaries add nothing new to the reader's understanding, and could be disposed of without loss to the book's usefulness. Chapter summaries are more appropriate for books whose material is far more lengthy and dense, thus justifying summaries as a way to convey the highlights to the reader. As noted earlier, the case study chapters similarly add very little value, if any, to Website Optimization, and could in future editions be folded into the relevant chapters, as sidebars, or at least made much more concise and moved to the back as appendices. There is a fair bit of repetition, in the form of allusions to techniques that are covered in more detail in earlier or later chapters, and other times in the form of redundancy within chapters. For instance, the sidebar on page 156, concerning CSS and JavaScript placement, consists of a uselessly brief mention of information covered later in more detail. Trimming away all of the repeated material and the chapter summaries, and folding the case studies into the relevant chapters, would make the book leaner and a faster read. Furthermore, some of the phrases are not entirely clear in their meaning, at least to readers who are not SEO marketers. For instance, "flagged sites" (page 12) — flagged for what? Some of the phrasing is confusing, if not downright bizarre, e.g. "information scent" (page 2) and "the scent of a link" (page 122)
Admittedly, a Web site owner could learn much of this information by reading numerous articles freely available online. But most businesspeople value their time much more highly than that, and would probably find a significant amount of repetition among those articles, because they tend to "borrow" a lot from one another. This is especially true in the cases of writers who have never done SEO optimization to a Web site themselves, or run a PPC campaign.
Aside from the aforesaid weaknesses, Website Optimization is an engaging, comprehensive, and valuable resource for anyone who wishes to improve the online marketing results of their own businesses Web sites or those of the clients they support. Online business owners and Web developers unfamiliar with core SEO and site optimization techniques, are urged to read this book.
Michael J. Ross is a Web developer, writer, and freelance editor.
You can purchase Website Optimization from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
(Stupid) Useful Emacs Tricks?
Count Fenring writes "Since the Vi version of this question was both interesting and popular, let's hear from the other end of the spectrum. What are your favorite tricks, macros, extensions, and techniques for any of the various Emacs? Myself, I like 'M-x dunnet' ;-)" -
Achieving Mathematical Proofs Via Computers
eldavojohn writes "A special issue of Notices of the American Mathematical Society (AMS) provides four beautiful articles illustrating formal proof by computation. PhysOrg has a simpler article on these assistant mathematical computer programs and states 'One long-term dream is to have formal proofs of all of the central theorems in mathematics. Thomas Hales, one of the authors writing in the Notices, says that such a collection of proofs would be akin to the sequencing of the mathematical genome.' You may recall a similar quest we discussed." -
(Useful) Stupid Vim Tricks?
haroldag writes "I thoroughly enjoyed the recent post about Unix tricks, so I ask Slashdot vim users, what's out there? :Sex, :b#, marks, ctags. Any tricks worth sharing?" -
FCC Unanimously Approves White Space Wi-Fi
Smelly Jeffrey writes "With the release of this whitepaper, the FCC unanimously approved plans for a new technology with strong supporters and even stronger detractors. White Space Wi-Fi effectively allows manufacturers of wireless devices to incorporate transceivers that operate on unused DTV channels. Although the deregulation is new, the idea seems to have caught Google's interest recently as well. It seems that this has been rather rushed through the normally stagnant channels at the FCC. While some view it as interference in the already crowded spectrum, it seems the FCC Chairman really likes the idea of re-purposing dark parts of the newly allocated DTV bands once more." Update: 11/06 18:15 GMT by T : You may want to look at Tuesday's mention of the decision as well, but the additional links here are interesting. -
Ubuntu 8.10 vs. Mac OS X 10.5.5 Benchmarks
An anonymous reader writes "As a sequel to their Is Ubuntu Getting Slower? Phoronix now has out an article that compares the performance of Ubuntu 8.10 to Apple's Mac OS X 10.5.5. They tested both the x86 and x86_64 spins of Ubuntu and threw at both operating systems a number of graphics, disk, computational, and Java benchmarks, among others. With the Mac Mini used in some of the comparisons, 'Leopard' was faster, while in others it was a tight battle." -
Professor, ECA Dispute Video Game Aggression Study
Earlier this week, we discussed research which linked aggression in children with video games. The Entertainment Consumer Association responded with a statement criticizing the research, as did Christopher Ferguson, a professor at Texas A&M. PCWorld sat down with Ferguson for a more in-depth discussion of the flaws with the study. In addition to bringing up the correlation vs. causation fallacy, he notes: "Even if you took it at face value, which I don't, video game violence overlaps somewhere between, based on their own statistics, a half a percent to two percent, with a variance in aggression. If you woke up tomorrow and you were half a percent more aggressive than you were today, would you notice that? It's just not much of an effect. If the author said look, there's a little effect here, maybe video games increase aggression a tiny bit, but it's not going to make anyone into a serial murderer, yeah, alright, we may argue a little bit over the methodology, though I'd still say they should've controlled for other stuff. " -
Australian Censorship Bypassed Before Live Trials
newt writes "The Australian Government is planning to conduct live trials of as-yet-unspecified censorship technology. But as every geek already knows, these systems can't possibly work in the presence of VPNs and proxy servers. PC Authority clues the punters in." Maybe the ISPs secretly like encouraging SSH tunneling — and making everyone pay for the extra bandwidth used. Not really; Australia's major ISPs, as mentioned a few days ago, think it's a bad idea. -
Applied Security Visualization
rsiles writes "When security professionals are dealing with huge amounts of information (and who isn't nowadays?), correlation and filtering is not the easiest path (and sometimes enough) to discern what is going on. The in-depth analysis of security data and logs is a time-consuming exercise, and security visualization (SecViz) extensively helps to focus on the relevant data and reduces the amount of work required to reach to the same conclusions. It is mandatory to add the tools and techniques associated to SecViz to your arsenal, as they are basically taking advantage of the capabilities we have as humans to visualize (and at the same time analyze) data. A clear example is the insider threat and related incidents, where tons of data sources are available. The best sentence (unfortunately it is not an image ;) that describes SecViz comes from the author: 'A picture is worth a thousand log entries.'" Read on for the rest of rsiles's review. Applied Security Visualization author Raffael Marty pages 552 publisher Addison-Wesley Professional rating 9/10 reviewer rsiles ISBN 978-0321510105 summary Definitely Security Visualization is one of the most relevant present and future topics in the security field, and this book is simply THE reference. This is a great book that joins two separate worlds, visualization and information security (infosec). The first chapter is an excellent introduction to the human perception system, its basic principles, and how we analyze, discern, and assimilate information. It is an eye opener for those new to the field. Chapter two is similar from an infosec perspective, and summarizes the main challenges and data sources, such as packet captures, traffic flows, and firewall, IDS/IPS, system, and application logs. The third chapter details different graph properties and chart types, including some open-source and online tools for chart and color selection. Although we (infosec pros) are familiarized with link graphs to represent relationships between botnet members or hosts, the book provides a whole set of charts for different purposes; one of the most useful types, and we are not very used too it in the security field, is treemaps. The chapter includes a really useful table to select the right graph based on the purpose of the analysis and the data available.
Then, the previous chapters are smoothly mixed together through a reference methodology that defines what is the problem to solve, and the process to manipulate the available data and generate a (or set of) graph(s) that allow gathering relevant conclusions and answers. The methodology is complemented with an introduction to the standard Unix-based text processing tools (grep, awk, Perl, etc). This methodology is later on applied, with a strong hands-on and how-to spirit, to an extensive set of common security use-cases, such as the perimeter threat, compliance, and the insider threat.
The perimeter chapter offers a deep insight into common attack scenarios, such as worms, DoS or anomaly detection, and operational tasks, like firewall log and ruleset analysis, IDS tuning, or vulnerability assessments. I could never forget how useful were SecViz techniques for anomaly detection on a huge DNS-related incident I was involved about 5 years ago. Thanks to the performance and statistical graphs we had available at that time, we were able to easily identify and solve a very complex and critical security incident.
When I saw this chapter included a wireless section I got really excited due to personal interest. However, I was disappointed as it was just a couple of pages. I think it could be extended to gather a whole set of useful information about complex wireless attacks and client and access points relationships, just by inspecting the different 802.11 management, control, and data frames, and even radio-frequency signals (from a spectrum analyzer). SecViz opens the door to a whole new wireless research area!
The compliance chapter offers a whole methodology to check and manage regulations, control frameworks, auditing, and risk monitoring and management from a visual perspective.
The same applies to the insider threat chapter, as it provides an impressive framework, not only visualization-based, to deal with malicious insiders. It is based on setting up scores for certain behaviors and activities (precursors), generating lists of suspicious candidates, and apply thresholds to accommodate exceptions. It also contains an extensive and directly applicable precursor list at the end to detect suspicious insider activities.
Finally, the book contains a whole chapter, full of references and comparison tables, of open-source and commercial visualization tools and libraries that allow the reader to select the appropriate tool for specific tasks and scenarios.
Although the book hands-on component is very significant, with lots of detailed examples of commands, scripts, and tool options to generate the different graphs, I would have liked to see a thorough usage of the how-to portions, as for some sections there are no specific details about how the graphs have been generated. The book layout makes it the perfect candidate to become a fully interactive technical book. I would suggest to add (for a 2nd edition ;)) practical sections to each chapter where the reader could reproduce all the steps discussed. The book CD is the perfect tool to provide the reader with all the (sanitized) data sets and logs used to generate the graphs, and even allow to include some challenges where the reader needs to analyze the data and answer some questions after generating the appropriate graphs.
To sum up, this book is a mandatory reference for anyone involved in the operational side of infosec, doing intrusion detection, incident handling, forensic analysis, etc, and it can be applied to both, historical analysis and real-time monitoring. Additionally, I found it useful too for auditing and pen-testing professionals, as it provides great tips to generate relevant and efficient graphs for the associated reports.
The accompanying DAVIX Live CD is an excellent resource to start applying the techniques covered throughout the book through open-source tools, SecViz is the Web portal to expand your knowledge on this topic, and AfterGlow is (one of) the most relevant SecViz open-source tools.
You can purchase Applied Security Visualization from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
Applied Security Visualization
rsiles writes "When security professionals are dealing with huge amounts of information (and who isn't nowadays?), correlation and filtering is not the easiest path (and sometimes enough) to discern what is going on. The in-depth analysis of security data and logs is a time-consuming exercise, and security visualization (SecViz) extensively helps to focus on the relevant data and reduces the amount of work required to reach to the same conclusions. It is mandatory to add the tools and techniques associated to SecViz to your arsenal, as they are basically taking advantage of the capabilities we have as humans to visualize (and at the same time analyze) data. A clear example is the insider threat and related incidents, where tons of data sources are available. The best sentence (unfortunately it is not an image ;) that describes SecViz comes from the author: 'A picture is worth a thousand log entries.'" Read on for the rest of rsiles's review. Applied Security Visualization author Raffael Marty pages 552 publisher Addison-Wesley Professional rating 9/10 reviewer rsiles ISBN 978-0321510105 summary Definitely Security Visualization is one of the most relevant present and future topics in the security field, and this book is simply THE reference. This is a great book that joins two separate worlds, visualization and information security (infosec). The first chapter is an excellent introduction to the human perception system, its basic principles, and how we analyze, discern, and assimilate information. It is an eye opener for those new to the field. Chapter two is similar from an infosec perspective, and summarizes the main challenges and data sources, such as packet captures, traffic flows, and firewall, IDS/IPS, system, and application logs. The third chapter details different graph properties and chart types, including some open-source and online tools for chart and color selection. Although we (infosec pros) are familiarized with link graphs to represent relationships between botnet members or hosts, the book provides a whole set of charts for different purposes; one of the most useful types, and we are not very used too it in the security field, is treemaps. The chapter includes a really useful table to select the right graph based on the purpose of the analysis and the data available.
Then, the previous chapters are smoothly mixed together through a reference methodology that defines what is the problem to solve, and the process to manipulate the available data and generate a (or set of) graph(s) that allow gathering relevant conclusions and answers. The methodology is complemented with an introduction to the standard Unix-based text processing tools (grep, awk, Perl, etc). This methodology is later on applied, with a strong hands-on and how-to spirit, to an extensive set of common security use-cases, such as the perimeter threat, compliance, and the insider threat.
The perimeter chapter offers a deep insight into common attack scenarios, such as worms, DoS or anomaly detection, and operational tasks, like firewall log and ruleset analysis, IDS tuning, or vulnerability assessments. I could never forget how useful were SecViz techniques for anomaly detection on a huge DNS-related incident I was involved about 5 years ago. Thanks to the performance and statistical graphs we had available at that time, we were able to easily identify and solve a very complex and critical security incident.
When I saw this chapter included a wireless section I got really excited due to personal interest. However, I was disappointed as it was just a couple of pages. I think it could be extended to gather a whole set of useful information about complex wireless attacks and client and access points relationships, just by inspecting the different 802.11 management, control, and data frames, and even radio-frequency signals (from a spectrum analyzer). SecViz opens the door to a whole new wireless research area!
The compliance chapter offers a whole methodology to check and manage regulations, control frameworks, auditing, and risk monitoring and management from a visual perspective.
The same applies to the insider threat chapter, as it provides an impressive framework, not only visualization-based, to deal with malicious insiders. It is based on setting up scores for certain behaviors and activities (precursors), generating lists of suspicious candidates, and apply thresholds to accommodate exceptions. It also contains an extensive and directly applicable precursor list at the end to detect suspicious insider activities.
Finally, the book contains a whole chapter, full of references and comparison tables, of open-source and commercial visualization tools and libraries that allow the reader to select the appropriate tool for specific tasks and scenarios.
Although the book hands-on component is very significant, with lots of detailed examples of commands, scripts, and tool options to generate the different graphs, I would have liked to see a thorough usage of the how-to portions, as for some sections there are no specific details about how the graphs have been generated. The book layout makes it the perfect candidate to become a fully interactive technical book. I would suggest to add (for a 2nd edition ;)) practical sections to each chapter where the reader could reproduce all the steps discussed. The book CD is the perfect tool to provide the reader with all the (sanitized) data sets and logs used to generate the graphs, and even allow to include some challenges where the reader needs to analyze the data and answer some questions after generating the appropriate graphs.
To sum up, this book is a mandatory reference for anyone involved in the operational side of infosec, doing intrusion detection, incident handling, forensic analysis, etc, and it can be applied to both, historical analysis and real-time monitoring. Additionally, I found it useful too for auditing and pen-testing professionals, as it provides great tips to generate relevant and efficient graphs for the associated reports.
The accompanying DAVIX Live CD is an excellent resource to start applying the techniques covered throughout the book through open-source tools, SecViz is the Web portal to expand your knowledge on this topic, and AfterGlow is (one of) the most relevant SecViz open-source tools.
You can purchase Applied Security Visualization from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
Bones Found Near Crash Site Confirmed Fossett's
Trip6 writes "Bones found near the wreckage of the plane flown by Steve Fossett when he disappeared last fall have been confirmed to be Fossett's by DNA analysis. The NTSB is still investigating the crash. Fossett may have been searching for a place to break the land speed record, his next quest." -
Bones Found Near Crash Site Confirmed Fossett's
Trip6 writes "Bones found near the wreckage of the plane flown by Steve Fossett when he disappeared last fall have been confirmed to be Fossett's by DNA analysis. The NTSB is still investigating the crash. Fossett may have been searching for a place to break the land speed record, his next quest." -
China To Begin Taxing Profits From Virtual Currencies
The Wall Street Journal reports that the Chinese government will collect a 20% personal income tax on any profits obtained through the redistribution of virtual currency. The legislation is intended to curtail speculation in virtual markets, which can be quite profitable. Quoting: "The announcement, which was distributed to local tax bureaus, specifically takes aim at those who buy virtual currency from gamers and surfers and sell it to others at a mark-up. Taxation officials are granted the right to determine the original price of online virtual currency if the individual fails to provide proof of an original price, it says. The policy would cover China's legions of online gamers, who can use online virtual currency to buy better equipment and new powers for their online warriors. But it also affects millions of others who use virtual currencies on instant-messaging services and Web portals." -
Microsoft Discontinues Windows 3.x
rugatero writes "The BBC reports that, as of last Saturday, Microsoft is no longer issuing licenses for the 18-year-old Windows 3.x. Many here may well be surprised to learn that anyone still has use for the antiquated software, but it seems to have found a home in a number of embedded systems — including cash registers and the in-flight entertainment systems on some long-haul passenger jets (Virgin and Qantas are cited). Considering Linux's credentials as an embedded OS, this news could very well indicate the possibility of more migrations in the pipeline." -
Linux Supports More Devices Than Any Other OS
Linux Blog recommends an interview up on the O'Reilly site with Greg Kroah-Hartman, long-time Linux kernel hacker and the current Linux kernel maintainer for the USB driver core. He updates the free Linux driver program announced almost two years ago, which has really caught traction now with more than 300 developers volunteering. The interviewer begins by asking about Kroah-Hartman's claim that the Linux kernel now supports more devices than any other operating system ever has. "[One factor is] the ease of writing drivers; Linux drivers are at normally one-third smaller than Windows drivers or other operating system drivers. We have all the examples there, so it's trivial to write a new one if you have new hardware, usually because you can copy the code and go. We maintain them... forever, so the old ones don't disappear and we run on every single processor out there. I mean Linux is 80% of the world's top 500 super computers right now and we're also the number one embedded operating system today. We've got both sides of the market because it's — yeah it's pretty amazing. I don't know why, but we're doing something right." -
Rainforest Fungus Synthesizes Diesel
Fluffeh alerts us to a report of a fungus that naturally produces diesel fuel, or something very close to it. "A fungus that lives inside trees in the Patagonian rain forest naturally makes a mix of hydrocarbons that bears a striking resemblance to diesel, biologists announced today. And the fungus can grow on cellulose, a major component of tree trunks, blades of grass and stalks that is the most abundant carbon-based plant material on Earth. ... [T]the paper's authors admit that the technique is far from any sort of industrial production. 'This report presents no information on the cost-effectiveness or other details to make G. roseum an alternative fuel source,' they write." NPR has an interview with the fungus's discoverer. -
Theora 1.0 Released, Supported By Firefox
YA_Python_dev writes "The Xiph.Org Foundation announced Monday the release of Theora 1.0. Theora is a free/open source video codec with a small CPU footprint that offers easy portability and requires no patent royalties. Upcoming versions of Firefox and Opera will play natively Ogg/Theora videos with the new HTML5 element <video src="file.ogv"></video>, and ffmpeg2theora offers an easy way to create content. Theora developers are already working on a 1.1 encoder that offers better quality/bitrate ratio, while producing streams backward-compatible with the current decoder." Adds reader logfish: "Since its bit-stream freeze in June of 2004 there have been numerous speed-ups and bug-fixes. Although Nokia claimed it to be proprietary almost a year ago, nothing has been proven. So now it's time to help it take over the internet, and finally push for video sites filled with Theora encoded vlogs, blurts and idle nonsense." -
Theora 1.0 Released, Supported By Firefox
YA_Python_dev writes "The Xiph.Org Foundation announced Monday the release of Theora 1.0. Theora is a free/open source video codec with a small CPU footprint that offers easy portability and requires no patent royalties. Upcoming versions of Firefox and Opera will play natively Ogg/Theora videos with the new HTML5 element <video src="file.ogv"></video>, and ffmpeg2theora offers an easy way to create content. Theora developers are already working on a 1.1 encoder that offers better quality/bitrate ratio, while producing streams backward-compatible with the current decoder." Adds reader logfish: "Since its bit-stream freeze in June of 2004 there have been numerous speed-ups and bug-fixes. Although Nokia claimed it to be proprietary almost a year ago, nothing has been proven. So now it's time to help it take over the internet, and finally push for video sites filled with Theora encoded vlogs, blurts and idle nonsense." -
Steam Cloud Launches This Week
Valve announced yesterday that their extension of Steam, called Steam Cloud, will launch later this week with the Left 4 Dead demo. Steam Cloud is "a set of services for Steam that stores application data online and allows user experiences to be consistent from any PC." We discussed an early announcement for it back in May. Valve adds that "Steam Cloud will be available to all publishers and developers using Steam, free of charge, and Valve will add Cloud support to its back catalog of Steam games. Cloud services are compatible with games purchased via Steam, at retail, and other digital outlets." -
Steam Cloud Launches This Week
Valve announced yesterday that their extension of Steam, called Steam Cloud, will launch later this week with the Left 4 Dead demo. Steam Cloud is "a set of services for Steam that stores application data online and allows user experiences to be consistent from any PC." We discussed an early announcement for it back in May. Valve adds that "Steam Cloud will be available to all publishers and developers using Steam, free of charge, and Valve will add Cloud support to its back catalog of Steam games. Cloud services are compatible with games purchased via Steam, at retail, and other digital outlets." -
LittleBigPlanet Creations Raising Copyright Questions
Joystiq's Law of the Game column uses the recently released LittleBigPlanet to address the question of intellectual property rights for user-created content within and for games. At this point, Sony's ToS claims a great deal of control over users' work, unlike Second Life's, which is much more permissive. GiantBomb has a related story pointing out creations within LittleBigPlanet that are copies of other games, and how they could lead to legal troubles for Sony if they aren't quick about taking them down. -
AT&T Begins a Trial To Cap, Meter Internet Usage
An anonymous reader writes "On the heels of Comcast's decision to implement a 250-GB monthly cap, and Time Warner Cable's exploration of caps and overage fees, DSL Reports notes that AT&T is launching a metered billing trial of their own in Reno, Nevada. According to a filing with the FCC (PDF), AT&T's existing tiers, which range from 768 kbps to 6 Mbps, would see caps ranging from 20 GB to 150 GB per month. Users who exceed those caps would pay an additional $1 per gigabyte, per month." -
AT&T Begins a Trial To Cap, Meter Internet Usage
An anonymous reader writes "On the heels of Comcast's decision to implement a 250-GB monthly cap, and Time Warner Cable's exploration of caps and overage fees, DSL Reports notes that AT&T is launching a metered billing trial of their own in Reno, Nevada. According to a filing with the FCC (PDF), AT&T's existing tiers, which range from 768 kbps to 6 Mbps, would see caps ranging from 20 GB to 150 GB per month. Users who exceed those caps would pay an additional $1 per gigabyte, per month." -
Programming .NET 3.5
lamaditx writes "The world of the .NET framework is taken to the next level by the release of .NET 3.5. The intended audience of this book are experienced .NET programmers. There are no sections that tell you details about C#, SQL servers or anything like that. I don't recommend this book if you never worked on a .NET project and don't know how to set up a SQL database. You should be aware that the code is written in C#. You might use one of the software code converters if you prefer Visual Basic instead. I think the code is still readable even if you do not know C#. I appreciate the fact that the authors decided to use one language only because it keeps the book smaller. The authors assume you are using Visual Studio 2008. You don't necessarily need to update to 2008 if you are working with an older edition because you can use the free Express Edition to get started." Keep reading for the rest of Adrian's review. Programming .NET 3.5 author Jesse Liberty & Alex Horovitz pages 476 publisher O'Reilly Media rating 7/10 reviewer Adrian Lambeck ISBN ISBN 978-0-596-52756-3 summary Covers all main .NET technologies found in .NET 3.5 The table of contents is available from O'Reilly — together with a chapter preview — here. The book does not come with any extras but includes the usual free 45 days access to the book on Safari.
This book covers the key technologies in .NET. There are books on each of these technologies: Windows Presentation Foundation (WPF), Windows Communication Foundation (WCF), XAML, AJAX,C# and Silverlight already, but this book shows you how everything is connected with each other. As the authors note: "Our goal is to show you the 25% that you will use 85% of the time.". From my point of view this is good because I have a .NET 2.0 background and wanted to know what is new in .NET 3.5 and how things are connected.
The book is divided in 3 main parts. The first is presentation, which covers XAML, WPF and AJAX. The second describes how to take advantage of the design pattern support in .NET. The last part covers the business layer which includes LINQ, WCF, WF and CardSpace.
The first part starts with XAML. This is the eXtensible A The next main topic is using WPF which is the successor of Windows Forms. The authors explain how to connect data structures to the user interface which I consider to be one of the most important parts of using WPF. You will also find a lot of code and XAML layout descriptions.
The chapter on Silverlight was not very helpful to me. Silverlight is the competitor of Adobe Flash. Giving samples how to layout a Silverlight application is essentially the same as a WPF application thus it dives into more details of XAML. I am missing the real Silverlight message so this part did not meet my expectations.
The third technology you will learn about is AJAX which leads us away from the desktop client to a web client. The explanation how AJAX works is pretty good. The authors show you step by step how to create a todo list web-application with a database backend using ASP.NET and AJAX. Again, this does not cover all AJAX controls or ASP.NET but it shows you how the parts are interconnected and assumes that if you know how to handle one control, then you can also figure out how to handle all the others. Most web applications need some kind of access control. At this point the authors argue that it is faster to implement your own security tables instead of using the ASP.NET forms-based controls.My opinion is that you should never do something that is not correct to teach something else. There are always people who get it wrong in a way you did not anticipate. My recommendation: use the ASP.NET components and do not implement them by yourself.
The second part about the design patterns was surprising to me because I expected the common introduction to standard design pattern. The Model-View-Controller project implements the pattern for ASP.NET and allows developers to incorporate it easily. The advantage is that you get a comprehensive and easy to understand introduction how .NET supports design pattern implementation. I guess this will lead some developers from theory of design patterns to actually implementing them.
I consider the third part to be the real interesting content. It starts with LINQ which bridges object-oriented code to relational databases. You get to know the differences to SQL and also the advantages it provides by explaining new concepts. The examples are easy to understand and successfully make their point.
Windows Communication Foundation (WCF) covers the hot Service-Oriented-Architecture (SOA) topic. The authors explain what it is all about but you will need some knowledge about Web Services and XML to really get it. The introduction is rather short but more details are explained in the corresponding example.
The chapter about Windows Workflow Foundation (WF) starts with a short example how you implement a workflow without WF. After that you get to see how you do the same with WF. This way the necessity for WF become clear and you understand how to take advantage of this technology.
Card Space is the successor of Microsoft passport which was not successful as an authentication service with respect to user acceptance. This is also the key issue that decides on the success of Card Space. Maybe the improved interoperability will help. The chapter provides you with a short authenticate-yourself test and shows you how to offer Card Space authentication in your ASP.NET application.
The book is a good entry to the world of .NET 3.5 because it gives you an idea about every part and what it is good for. Maybe you do not need all of it for your job but at least you know that it exists and how it might be useful. I think it is reasonable that a comprehensive introduction to .NET 3.5 can not satisfy everybody because the range of topics is too broad. One can argue that this kind of information could also be retrieved from the net. I consider the book to be a better resource because it already summarizes the important information such that you do not drown in a flood of information.
There is also some criticism as I pointed out earlier. Maybe I am just a little picky about the details but if you print code download references into a book, they must be available. Most examples can be downloaded but the Alex Horovitz site was not reachable when I tried to access it. Another personal remark is that I do not like to see quotes from Wikipedia. Other people might think different about that so you just need to decide on your own.
I rate this book a 7. The authors scratch the surface of every topic and choose an appropriate style to explain it. You can tell that they thought about how to explain each topic on it's own and give you not just the "how" but also the "why".
Adrian Lambeck is a graduate student in "Media and Information Technologies" and worked with .NET for a few years.
You can purchase Programming .NET 3.5 from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
Programming .NET 3.5
lamaditx writes "The world of the .NET framework is taken to the next level by the release of .NET 3.5. The intended audience of this book are experienced .NET programmers. There are no sections that tell you details about C#, SQL servers or anything like that. I don't recommend this book if you never worked on a .NET project and don't know how to set up a SQL database. You should be aware that the code is written in C#. You might use one of the software code converters if you prefer Visual Basic instead. I think the code is still readable even if you do not know C#. I appreciate the fact that the authors decided to use one language only because it keeps the book smaller. The authors assume you are using Visual Studio 2008. You don't necessarily need to update to 2008 if you are working with an older edition because you can use the free Express Edition to get started." Keep reading for the rest of Adrian's review. Programming .NET 3.5 author Jesse Liberty & Alex Horovitz pages 476 publisher O'Reilly Media rating 7/10 reviewer Adrian Lambeck ISBN ISBN 978-0-596-52756-3 summary Covers all main .NET technologies found in .NET 3.5 The table of contents is available from O'Reilly — together with a chapter preview — here. The book does not come with any extras but includes the usual free 45 days access to the book on Safari.
This book covers the key technologies in .NET. There are books on each of these technologies: Windows Presentation Foundation (WPF), Windows Communication Foundation (WCF), XAML, AJAX,C# and Silverlight already, but this book shows you how everything is connected with each other. As the authors note: "Our goal is to show you the 25% that you will use 85% of the time.". From my point of view this is good because I have a .NET 2.0 background and wanted to know what is new in .NET 3.5 and how things are connected.
The book is divided in 3 main parts. The first is presentation, which covers XAML, WPF and AJAX. The second describes how to take advantage of the design pattern support in .NET. The last part covers the business layer which includes LINQ, WCF, WF and CardSpace.
The first part starts with XAML. This is the eXtensible A The next main topic is using WPF which is the successor of Windows Forms. The authors explain how to connect data structures to the user interface which I consider to be one of the most important parts of using WPF. You will also find a lot of code and XAML layout descriptions.
The chapter on Silverlight was not very helpful to me. Silverlight is the competitor of Adobe Flash. Giving samples how to layout a Silverlight application is essentially the same as a WPF application thus it dives into more details of XAML. I am missing the real Silverlight message so this part did not meet my expectations.
The third technology you will learn about is AJAX which leads us away from the desktop client to a web client. The explanation how AJAX works is pretty good. The authors show you step by step how to create a todo list web-application with a database backend using ASP.NET and AJAX. Again, this does not cover all AJAX controls or ASP.NET but it shows you how the parts are interconnected and assumes that if you know how to handle one control, then you can also figure out how to handle all the others. Most web applications need some kind of access control. At this point the authors argue that it is faster to implement your own security tables instead of using the ASP.NET forms-based controls.My opinion is that you should never do something that is not correct to teach something else. There are always people who get it wrong in a way you did not anticipate. My recommendation: use the ASP.NET components and do not implement them by yourself.
The second part about the design patterns was surprising to me because I expected the common introduction to standard design pattern. The Model-View-Controller project implements the pattern for ASP.NET and allows developers to incorporate it easily. The advantage is that you get a comprehensive and easy to understand introduction how .NET supports design pattern implementation. I guess this will lead some developers from theory of design patterns to actually implementing them.
I consider the third part to be the real interesting content. It starts with LINQ which bridges object-oriented code to relational databases. You get to know the differences to SQL and also the advantages it provides by explaining new concepts. The examples are easy to understand and successfully make their point.
Windows Communication Foundation (WCF) covers the hot Service-Oriented-Architecture (SOA) topic. The authors explain what it is all about but you will need some knowledge about Web Services and XML to really get it. The introduction is rather short but more details are explained in the corresponding example.
The chapter about Windows Workflow Foundation (WF) starts with a short example how you implement a workflow without WF. After that you get to see how you do the same with WF. This way the necessity for WF become clear and you understand how to take advantage of this technology.
Card Space is the successor of Microsoft passport which was not successful as an authentication service with respect to user acceptance. This is also the key issue that decides on the success of Card Space. Maybe the improved interoperability will help. The chapter provides you with a short authenticate-yourself test and shows you how to offer Card Space authentication in your ASP.NET application.
The book is a good entry to the world of .NET 3.5 because it gives you an idea about every part and what it is good for. Maybe you do not need all of it for your job but at least you know that it exists and how it might be useful. I think it is reasonable that a comprehensive introduction to .NET 3.5 can not satisfy everybody because the range of topics is too broad. One can argue that this kind of information could also be retrieved from the net. I consider the book to be a better resource because it already summarizes the important information such that you do not drown in a flood of information.
There is also some criticism as I pointed out earlier. Maybe I am just a little picky about the details but if you print code download references into a book, they must be available. Most examples can be downloaded but the Alex Horovitz site was not reachable when I tried to access it. Another personal remark is that I do not like to see quotes from Wikipedia. Other people might think different about that so you just need to decide on your own.
I rate this book a 7. The authors scratch the surface of every topic and choose an appropriate style to explain it. You can tell that they thought about how to explain each topic on it's own and give you not just the "how" but also the "why".
Adrian Lambeck is a graduate student in "Media and Information Technologies" and worked with .NET for a few years.
You can purchase Programming .NET 3.5 from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. -
Discuss the US Presidential Election & Education
In 24 hours, many of you will be able to vote. So as we come down to the wire, this is really our last chance to talk about the issues. We've already discussed Health Care, the War, and the Economy. Today I'm opening up the floor to discuss education. Perhaps no other issue will matter more in 50 years. Which candidate will make the next generation smarter? -
Discuss the US Presidential Election & Education
In 24 hours, many of you will be able to vote. So as we come down to the wire, this is really our last chance to talk about the issues. We've already discussed Health Care, the War, and the Economy. Today I'm opening up the floor to discuss education. Perhaps no other issue will matter more in 50 years. Which candidate will make the next generation smarter? -
Discuss the US Presidential Election & Education
In 24 hours, many of you will be able to vote. So as we come down to the wire, this is really our last chance to talk about the issues. We've already discussed Health Care, the War, and the Economy. Today I'm opening up the floor to discuss education. Perhaps no other issue will matter more in 50 years. Which candidate will make the next generation smarter? -
Behind the Cogent-Sprint Depeering
An anonymous reader brings an update to Sprint's depeering with Cogent, which we discussed a few days back — namely, Sprint's side of the story. According to them, no free peering contract had ever existed, Cogent refused to pay the bills to exchange traffic, and after a year Sprint gave Cogent 30 days notice of their intent to disconnect. During this 30-day period, when one or two connections (out of ten) per week were shut down, Cogent made no alternate arrangements to alleviate the impact on their customers — but they had a press release ready when Sprint snipped the final wire. It will be interesting to see how Cogent responds. -
French Senate Passes Anti-Piracy Internet Cut-Off Law
An anonymous reader writes "The French Senate has approved a three strikes law for Internet users who download copyrighted entertainment media without paying for it. If, after two warnings, a person continues to download pirated music and movies, the internet service providers would cut off access for a year. Quoting: 'The legislation passed with a massive cross-party majority of 297 votes to 15. Only a handful of conservatives, centrists and socialists voted against, while the Communists abstained. In passing the bill, the senators rejected an amendment proposed by senator Bruno Retailleau of the right-wing MPF party replacing internet cut-off with a fine. ... The bill sets up a tussle between France and Brussels. In September, the European Parliament approved by a large majority an amendment outlawing internet cut-off." We discussed the introduction of this legislation several months ago. -
Judge Orders White House To Produce Wiretap Memos
sv_libertarian sends this excerpt from the Associated Press: "A judge has ordered the Justice Department to produce White House memos that provide the legal basis for the Bush administration's post-Sept. 11 warrantless wiretapping program. US District Judge Henry Kennedy Jr. signed an order (PDF) Friday requiring the department to produce the memos by the White House legal counsel's office by Nov. 17. He said he will review the memos in private to determine if any information can be released publicly without violating attorney-client privilege or jeopardizing national security. Kennedy issued his order in response to lawsuits by civil liberties groups in 2005 after news reports disclosed the wiretapping." -
Windows 7 To Be 256-Core Aware
unassimilatible writes "As new features of Windows 7 continue to trickle out, ZDNet is now reporting that it will scale to 256 processors. While one has to wonder, like with Vista, how many of the teased features will actually make it into the final OS, I think we can all agree, 256 cores is enough for anybody." This Mark Russinovich interview has some technical details (Silverlight required). -
Opera Mini Not Rejected From iPhone (Yet)
danaris writes in to inform us that John Gruber has done some digging on the reported rejection from the App Store of Opera Mini, and has written up his findings. Some choice excerpts: "My understanding, based on information from informed sources who do not wish to be identified because they were not authorized by their employers, is that Opera has developed an iPhone version of Opera Mini — but they haven't even submitted it to Apple, let alone had it be rejected. ... If what they've done for the iPhone is [to get] a Java ME runtime running on the iPhone — it's clearly outside the bounds of the iPhone SDK Agreement. ... What Opera would need to do to have a version of Opera Mini they could submit to the App Store would be to port the entire client software to the C and Objective-C APIs officially supported on the iPhone. It could well be that even then, Apple would reject it from the App Store on anti-competitive grounds — but contrary to this week's speculation, that has not happened." -
More Sony Batteries Recalled
Scott Hagerman passes along news of yet another recall of Sony laptop batteries. The batteries in question, manufactured in the same timeframe as those involved in the massive 2006 recall, are in laptops sold by HP, Dell, Toshiba, Lenovo, and Acer. Neither Apple nor Sony itself used these batteries in their laptops. This time 100,000 batteries are involved — 65,000 of them sold outside of the US — vs. the 10 million recalled in 2006. The Consumer Product Safety Commission fielded 19 reports of batteries overheating and/or catching fire. -
Doom9 Researchers Break BD+
An anonymous reader writes "BD+, the Blu-ray copy protection system that was supposed to last 10 years, has now been solidly broken by a group of doom9 researchers. Earlier, BD+ had been broken by the commercial company SlySoft." Someone from SlySoft posts a hint early in the thread, but then backs off for fear of getting fired. The break is announced on page 15. -
Doom9 Researchers Break BD+
An anonymous reader writes "BD+, the Blu-ray copy protection system that was supposed to last 10 years, has now been solidly broken by a group of doom9 researchers. Earlier, BD+ had been broken by the commercial company SlySoft." Someone from SlySoft posts a hint early in the thread, but then backs off for fear of getting fired. The break is announced on page 15. -
Fallout 3 Launches Amidst Controversy
Earlier this week, Bethesda released Fallout 3 after a long campaign of defending and protecting the game's reputation from claims that it contained inappropriate content. Ads for the game in Washington DC's subway system were pulled after they upset some touchy travelers over the depiction of post-apocalyptic Washington landmarks. Shortly before the game's release, early trailers were removed as well. Earlier this year, the game was banned in Australia for its in-game use of morphine, causing the drug's name to be changed to Med-X. On the issue of sensitive content, Bethesda's Emil Pagliarulo wrote in Edge Magazine about the design decision to disallow the killing of children in the game. Gamasutra ran an opinion piece on the same subject, and the Washington Post discusses the role of Washington DC in Fallout 3. On the DRM front, the game does come with SecuROM, but Bethesda says it's only used for a disc check. Reviews for the game have been overwhelmingly positive so far, despite reports of bugs with the save system and occasional lock-ups. -
Google May Scrap Yahoo Deal
JagsLive points out a Reuters story which suggests that Google may walk away from its deal with Yahoo instead of accepting possible antitrust limitations from the government. The ongoing investigation of the deal by the Department of Justice has caused new concerns to be raised over whether the two companies have adequately addressed issues such as privacy and competition. From Reuters: "'Are they more serious about walking away? Yes. Have they decided? I'm not sure,' one source told Reuters on Friday. 'Yahoo wants the deal, and they're willing to have Google sign anything at the Justice Department to have them do it.' ... Part of the impetus of Google's walking away could be Yahoo's talks with Time Warner Inc about buying the content and advertising operations of its AOL unit. Google initially struck the deal with Yahoo as a way to fend off Microsoft Corp's unsolicited bid. Yahoo and AOL are conducting due diligence to see what a combined company would look like." -
Motorola Moving to Android, Windows Mobile for Smartphones
nerdyH writes "Motorola will ditch its MotoMAGX Linux stack and UIQ Symbian stack in favor of Google's Android Linux/Java stack and Windows Mobile 6.5 and 7, it announced today. The news comes after five years selling millions of Linux phones in Asia, and after a year during which many of Motorola's top US phones used the homegrown Linux stack. Motorola's current Linux phones in the US include the RAZR2 v8, E8, EM30, U9, ZN4, and ZN5." This also comes alongside news that Motorola's financial hardships are causing them to cut 3,000 jobs. It also puts into perspective their recent plans to hire hundreds of Android developers. -
Windows Azure Offers Developers Iron-Clad Lock-in
snydeq writes "Microsoft's move to the cloud is certain to create a whole new kind of developer partner, Fatal Exception's Neil McAllister writes. But as much as Microsoft ISVs will likely go along with the shift to Windows Azure to keep revenue streams going, the kind of lock-in they will experience will be worlds away from what they face today. Rather than being able to ignore the new version of a key framework, developers will have no other option than to update their code to suit Microsoft's latest platform. That kind of lock-in will leave customers in the lurch, subject to their vendors' bottom lines, as ISVs that can't afford to rework code to keep up with Microsoft's latest platform will begin dropping services, and customers will have little choice but to accept the new terms of service their vendors send along." -
Apple Plans To Make Chips For Handhelds
Preedit writes "Apple plans to get into the business of designing microprocessors for handheld devices, according to legal papers that are part of a dispute between IBM and one of its top technology executives. IBM is suing Power chip expert Mark Papermaster for allegedly violating a non-compete agreement and accepting a job at Apple. In court papers, IBM claims Apple wants Papermaster 'to design microprocessors for incorporation in a variety of electronic devices, including handheld devices.' The suit, according to Infoweek, also notes that Apple earlier this year bought out P.A. Semi. IBM thinks it knows why." -
Google Book Search Settlement Receiving Criticism
waderoush writes "While James Gleick, Lawrence Lessig, and other pundits have reacted positively to this week's proposed settlement of the publishing industry's lawsuit against Google over the Google Book Search project, a deeper study of the agreement turns up some worrisome provisions that could make online access to books much more costly and difficult than it needs to be. Harvard University's libraries, for example, declined to endorse the settlement over concerns that it provides no mechanism for keeping the cost of access to books reasonable. And while the parties to the settlement have made much of the clause providing public libraries with free full-text access to Google's database of over 7 million out-of-print books, Xconomy has a post pointing out that this access is restricted to exactly one Google terminal per library. So, you can read books for free — as long as you're the first person to get to your public library's computer room in the morning." -
Discuss the US Presidential Election & Health Care
Yesterday we discussed the war and how foreign policy will matter in your decision next Tuesday. Today our series of election discussion pieces continues with Health Care. With an obesity epidemic, a failing economy, and ballooning health care costs, which candidate has the best answers to making sure that Americans are able to stay healthy without America being bankrupted in the process? -
Examining the Role of Video Games In the US Election
Gamasutra is running an article discussing the influence of games and gamers on the 2004 and 2008 presidential elections. The connection, while minor, is continuing to strengthen, from allowing people to register to vote through their consoles, to in-game advertising, to games about and involving the candidates. However, it may still be an uphill climb as media-sharing becomes easier. From Gamasutra: "There are reasons games have grown slowly compared to other technologies for political outreach. The most important one is also the most obvious: since 2004, online video and social networks have become the big thing, as blogs were four years ago. Instead of urging voters to 'play my game,' as Loftus and I surmised, candidates urged their constituents to 'watch my video.' Online video became the political totem of 2008, from James Kotecki's dorm room interviews to CNN's YouTube debates." -
Presidential Youth Debate Answers and Details Now Online
Last month, Slashdot readers contributed their own inquiries to the pool of questions for the Walden University Presidential Youth Debate. Two of those questions made the cut, and you can watch either the individual video responses to each of the questions presented to John McCain and Barack Obama (by scrolling down the just-linked debate home page), or the whole debate straight through. For something meatier, if you are weary of predictably slippery campaign-style answers, Ethan Rowe of End Point has a very interesting blog post about the technology background of the debate.