What new security techniques have you applied to your coding practices to try and remove the likelihood of security flaws?
What do you feel that you do differently to others in the market, and do you feel that you can learn from someone else?
Are there automatic programs/techniques (that you would recommend) and that we (i.e the rest of the industry) can use in our coding ?
Perhaps the reason behind this is because matlab is slow in comparison to C/C++. If you're doing stock modelling which changes by the ms or less, then matlab just isn't quick enough.
perhaps something like SPF could be used? That would ensure that spam was sent from the correct mail servers, and hence not spoofed. This would reduce a large amount of spam appearing to come from other users. Once this has been done we can then clamp down on the dodgey email servers.
If he had a blue-toothed enabled phone then he could have written a program to create messages, and then get the phone to send them. That wouldn't be too difficult.
the idea is that it saves money since you can always just up the bandwidth by using more colours. Initially pricey but in the long term a great investment.
Actually I've noticed speed decreases too, and reverse DNS lookup issues. I'm on SuperJanet, so it is quite unlikely that there's an ISP issue, especially over such a large time frame.
I had guessed that it was down to all of the new Netsky-like viruses that use large amounts of bandwidth.
You use the a href tag: [a href="http://www.palminfocenter.com/view_stor y.asp?ID=5830"]blah blah [/]
where you swap the [] for the less than and greater than signs. hth
and it can sometimes bring firefox back to the frunt too... aaargghhhh!
Oh, and when you open a ZIP file on my machine, I apparently open it with nothing!!:D
Just for other people's info... since I didn't know:
Tarpitting discourages spamming without permanently blocking an offending IP address. Tarpitting works by monitoring traffic and applying sluggish responses to remote IPs showing spam-like behavior. For example, if an IP sends too many messages to users during an email session, tarpitting starts slowing MDaemon's response. If the spam-like behavior includes excessive unknown addresses during a session, the remote server can be suspended from access for a user-specified amount of time.
And I was under the impression that most spam servers.... i.e. all those bots with unprotected windows machines were in America!!! And I was gonna block the entire of America.... but then common sense kicked in.
Surely this isn't the solution. There needs to be a diplomatic solution to this....
Well I've set mine up really, really nicely. (It allows me to alter my entire site, from php to perl etc. securely from a remote location).
Do I want to change it all now? No.
[peeved]
They also have price controls on textbooks, which is why the textbook burden gets shifted to us.
NO, we really don't. 30 is around $50. We have to pay the costs for the US publishers to publish in this country or publish in the US and ship them over.
Imho, you really need the texts if you want to get a good grade, but that's just my uni.
Yeah but how does that make them money? They need a short term money solution too.
Re:Guides to Secure Programming? MOD PARENT UP
on
PHP and SQL Security
·
· Score: 1
I was just about to ask about a book on how to write secure code, and for other good practices.
Might I suggest that you mirror your column on your site after 4 or 5 months?
There are loads of built-in functions on these calculators, which make them excellent for speeding up repetitive calculations really easily.
They have a basic-like programming langauge which is really easily to learn and is extremely simple, but can do 'average calculatory' complex things. (well you wouldn't want to write an app that would do photo manipulation) The main disadvantage with these things is that programs like factorisation of large primes (!!) takes quite a while, since the language is slow. When you use the assembly language with it though, you can produce faster graphical based apps and other slightly more complicated apps. (games anyone?)
Imho, the main advantage is the speed at which you can enter details into the calculator and produce the answer. The built-in fucntions, as I said, are awesome... LR factorisation on my TI-86, eigenvalues too, displaying differential equations (the education site's table was wrong), dot products and what-not with vectors, and lots of matrix stuff. I love have inverse function - it is so useful for doing computer graphics.
no, it isn't allowed because it can do symbolic integration and differentiation.
All of them have keyboards of a form. Otherwise, some smart ass would come along with a dvorak layout!
If I were going to write an exploit, I'd write the exploit AFTER Microsoft had patched my OS so I didn't zombie my own computer up!!!!
With all the script-kiddies out there, would they know how to patch microsoft to protect themselves? They probably use code from security sites which show the exploit in action, and don't understand the underlying code.
Of course for the others, they probably realise that many people are forced to use Windows, and there only protection is Windows with a decent firewall and up to date WindowsUpdates.
Slashdot Mirror
What new security techniques have you applied to your coding practices to try and remove the likelihood of security flaws? What do you feel that you do differently to others in the market, and do you feel that you can learn from someone else? Are there automatic programs/techniques (that you would recommend) and that we (i.e the rest of the industry) can use in our coding ?
You divided through by zero. You can't do that!
Perhaps the reason behind this is because matlab is slow in comparison to C/C++. If you're doing stock modelling which changes by the ms or less, then matlab just isn't quick enough.
perhaps something like SPF could be used? That would ensure that spam was sent from the correct mail servers, and hence not spoofed. This would reduce a large amount of spam appearing to come from other users.
Once this has been done we can then clamp down on the dodgey email servers.
If he had a blue-toothed enabled phone then he could have written a program to create messages, and then get the phone to send them. That wouldn't be too difficult.
the idea is that it saves money since you can always just up the bandwidth by using more colours. Initially pricey but in the long term a great investment.
Yeah well you hadn't heard about that collapse of the Paris terminal -- Charles de Gaul. Fuck me, I'm not travelling using it.
it seems a bit big though?
how's that a punishment?
Actually I've noticed speed decreases too, and reverse DNS lookup issues. I'm on SuperJanet, so it is quite unlikely that there's an ISP issue, especially over such a large time frame.
I had guessed that it was down to all of the new Netsky-like viruses that use large amounts of bandwidth.
I think that you want to do this: go to palminfocenter.com
You use the a href tag: [a href="http://www.palminfocenter.com/view_stor y.asp?ID=5830"]blah blah [/]
where you swap the [] for the less than and greater than signs. hth
and it can sometimes bring firefox back to the frunt too... aaargghhhh! :D
Oh, and when you open a ZIP file on my machine, I apparently open it with nothing!!
and then take the money back out of the bank account when they get convicted!! :)
Just for other people's info... since I didn't know:
Tarpitting discourages spamming without permanently blocking an offending IP address. Tarpitting works by monitoring traffic and applying sluggish responses to remote IPs showing spam-like behavior. For example, if an IP sends too many messages to users during an email session, tarpitting starts slowing MDaemon's response. If the spam-like behavior includes excessive unknown addresses during a session, the remote server can be suspended from access for a user-specified amount of time.
And I was under the impression that most spam servers.... i.e. all those bots with unprotected windows machines were in America!!! And I was gonna block the entire of America.... but then common sense kicked in.
Surely this isn't the solution. There needs to be a diplomatic solution to this....
Well I've set mine up really, really nicely. (It allows me to alter my entire site, from php to perl etc. securely from a remote location). Do I want to change it all now? No. [peeved]
You're not allowed commerical content either by using the free version.
They also have price controls on textbooks, which is why the textbook burden gets shifted to us. NO, we really don't. 30 is around $50. We have to pay the costs for the US publishers to publish in this country or publish in the US and ship them over. Imho, you really need the texts if you want to get a good grade, but that's just my uni.
I dunno, I use a library myself! ;)
Yeah but how does that make them money? They need a short term money solution too.
I was just about to ask about a book on how to write secure code, and for other good practices.
Might I suggest that you mirror your column on your site after 4 or 5 months?
Any other recommendations for security books?
In the UK, it is completely banned from every exam that I have heard of, along with the TI-92.
Surely this makes all of the maths exams more like a 'how shall I use my ti-calculator today?' exam.
There are loads of built-in functions on these calculators, which make them excellent for speeding up repetitive calculations really easily.
They have a basic-like programming langauge which is really easily to learn and is extremely simple, but can do 'average calculatory' complex things. (well you wouldn't want to write an app that would do photo manipulation) The main disadvantage with these things is that programs like factorisation of large primes (!!) takes quite a while, since the language is slow. When you use the assembly language with it though, you can produce faster graphical based apps and other slightly more complicated apps. (games anyone?)
Imho, the main advantage is the speed at which you can enter details into the calculator and produce the answer. The built-in fucntions, as I said, are awesome... LR factorisation on my TI-86, eigenvalues too, displaying differential equations (the education site's table was wrong), dot products and what-not with vectors, and lots of matrix stuff. I love have inverse function - it is so useful for doing computer graphics.
no, it isn't allowed because it can do symbolic integration and differentiation. All of them have keyboards of a form. Otherwise, some smart ass would come along with a dvorak layout!
If I were going to write an exploit, I'd write the exploit AFTER Microsoft had patched my OS so I didn't zombie my own computer up!!!!
With all the script-kiddies out there, would they know how to patch microsoft to protect themselves? They probably use code from security sites which show the exploit in action, and don't understand the underlying code.
Of course for the others, they probably realise that many people are forced to use Windows, and there only protection is Windows with a decent firewall and up to date WindowsUpdates.