In his XML example with XPath injection he states that running a certain query can return the entire order history of all customers. That may be true, but if the application is returning an XML document containing the entire order history of all customers for each customer request before running an XPath query, then I think the application has more problems than being vulnerable to XPath injection.
You can also read that passage as a poetic description of a volcano, or any number of things. Read some Milton or Dante and you'll find that their style is somewhat similar. Yet you'd have a hard time convincing anybody that any of their stuff is literal truth.
I'm not a fan of Java WebStart (and I'm a professional Java developer). I was merely pointing out that what the grand-parent was suggesting has already been done.
It does support OSX (I use a Mac myself). That article is a bit out of date (2001) but was the best article I could find in the 20 seconds I searched...
Then standardize on a cross-platform API (Java is a possible candidate), and then when you click a link to a remote application (from your browser/finder/explorer thing), that app is quickly downloaded and cached on your end and run like any other local program, with the exception of different privileges and such. These programs might just call back to their home server for their data, in the case of something like a simple game, or they could allow you to read and write data from your local disks. The advantage of using a remote app in the latter case would of course be not having to worry about upgrading or anything - the only version that's available to use is the latest version.
Some of the ease-of-use and ease-of-programming features associated with Java Web Start include:
Portability: Java Web Start is available on Windows, Solaris, and Linux, and is expected to be ported to other platforms.
Caching: Applications launched with Java Web Start are cached locally. Thus, an already-downloaded application is launched on par with a traditionally installed application.
Maintainability: If the remote application is updated, Java Web Start updates the locally cached version at the application's next invocation.
Easy launching: Java Web Start allows applications to be launched independently of a Web browser. The application can also be launched through desktop shortcuts, making launching the Web-deployed application similar to launching a native application.
Ability to work offline: An application can be used in situations where launching through the browser is inconvenient or impossible.
If it's such a lie, how come I'm currently working on an application that is developed on Windows and Linux (office/home) with a Sun JDK and then deployed on an AS/400 with an IBM JRE and it doesn't break a sweat? It just works. That's 3 OSs and 2 completely different versions of the JRE. The only time I ever came across non-portable Java was when I inherited a bunch of code that had hard-coded path delimiters and things inside it - in other words we're talking PEBKAC. There are utility classes to make everything OS/platform agnostic, if you don't use them it's not going to be portable, it's also bad practice. I ended up firing the guy who put in hardcoded paths. Not for that particular example, but just because he couldn't code very well in general.
...for the first two (non-source controlled changes and lack of comments) is simply to tell all the developers that if they don't start doing this right now then they will be fired. Both of those things are individual problems and are some of the signs of a bad developer. If they're not prepared to improve their own personal precedures, show them the door...
Just because someone doesn't buy into the tripe of "from each according to his ability, to each according to his need", doesn't make them right wing.
Regardless of the left/right thing, that statement comes from a heartless bastard who doesn't care about those less fortunate than themselves. That is what is supposed to set us aside as humans, you know, that altruism thing? You may as well be a chimp. Strangely enough, that description also fits the current US president...
You are confusing "free" with "taxpayer supported". Free is an illusion generated by people who don't get economics.
You are right of course, but what that effectively means is that those most able to pay are the ones that do, and the ones that can't pay don't have to. Here in the UK the phrase that politicians tend to use is "free at the point of treatment" which is exactly what it is. This is the only fair way of doing it IMO which is why the vast majority of Western nations implement something similar.
I'm not American, just looking from the outside. So I just Googled Pelosi (no point in Kennedy, don't know which one you're talking about). So I find her website and I haven't got time to read it all as I'm at work now but this immediately jumped out at me:-
to make health care and college more affordable
Anything other than free healthcare and education for all is a right wing policy.
Republicans (normally Whigoids, to UKers) have turned the political process into a tribalist scrum rather than an informed debate. The Democrats (normally Toryoids, to UKers)
Not quite. Republicans would be more like the BNP (far-right, religious lunatic, massively patriotic to the point of getting racist), Democrats would be like the Conservatives (generally right wing, but not as extreme).
Except the Democrats are not a left wing party. They are a right wing party that are just not quite as right wing as the Republicans. America doesn't have a left wing party which is why it's going to hell in a handbasket. There are no checks and balances. It's right wing or further right wing only.
Frenching refers to the method of preparation; it's an archaic term for slicing into a million lengthy pieces.
Er no. That's down to your inability to deal with foreign languages. That method of preparation is called Julienne, it's just been Americanised to "Frenching"
Also note - Cafetiere is a French Press in the US (Wikipedia even redirects you helpfully)
I'm sure that there are many other examples. It seems that if the word is from the French, then in US English the object becomes a "French [something]" or similar derivative.
More importantly the French created French Fries so maybe we should be calling them pommes frites instead... AND WE created Potato Chips and thats the god damn name we gave it! Its you dumb bastards who insist on calling them weird fucking British slang things instead of their true names who should get a clue.
Actually it was the Belgians that invented French Fries. It's you dumb bastards who can't tell the difference between two European countries that should get a clue;-)
Take anything on that Spy Blog with a very large sack of salt. They wrote about one of the projects I was involved in a few years back, and it was just about the most complete load of uninformed bollocks I've ever read.
Any store can refuse to stock any title it feels like for whatever reason. The only reason this is news is because they have come out and explained why they are not socking it. If they hadn't come out and explained, no-one would have noticed. They'd maybe have tried to buy it in those stores, found it wasn't there, and gone along to Game or HMV, or a Virgin Megastore etc etc instead.
I suspect these stores are putting this story out into the press, because as the grandparent says, these stores aren't really known for selling games and this is a way for them to remind people that they do.
Interesting technique. I used things called Active Shape Models in my MSc thesis which do pretty much the same kind of thing if I understand the article correctly. I've since lost touch with the academic research. Can anyone who still works in the area give me a quick run down of the differences and pros/cons?
They are not subject to the US court system. If it was me in this position I'd be sending the judge an e-mail with a picture of me holding up my middle finger. Then I'd move my operations to a.org.uk address and notify my customers.
Slashdot Mirror
That's the only way to get through to these people. I also refuse to work in a cubicled environment, and I'm a contractor...
Bob
But not over an XML representation of the entire damn customer orders table. That's insane.
Bob
In his XML example with XPath injection he states that running a certain query can return the entire order history of all customers. That may be true, but if the application is returning an XML document containing the entire order history of all customers for each customer request before running an XPath query, then I think the application has more problems than being vulnerable to XPath injection.
Bob
As a Christian you ought to know that the Catholic Curch was started by Paul and not Christ.
Bob
You can also read that passage as a poetic description of a volcano, or any number of things. Read some Milton or Dante and you'll find that their style is somewhat similar. Yet you'd have a hard time convincing anybody that any of their stuff is literal truth.
Bob
I'm not a fan of Java WebStart (and I'm a professional Java developer). I was merely pointing out that what the grand-parent was suggesting has already been done.
Bob
No OS X support?
It does support OSX (I use a Mac myself). That article is a bit out of date (2001) but was the best article I could find in the 20 seconds I searched...
Bob
Some of the ease-of-use and ease-of-programming features associated with Java Web Start include:
- Portability: Java Web Start is available on Windows, Solaris, and Linux, and is expected to be ported to other platforms.
- Caching: Applications launched with Java Web Start are cached locally. Thus, an already-downloaded application is launched on par with a traditionally installed application.
- Maintainability: If the remote application is updated, Java Web Start updates the locally cached version at the application's next invocation.
- Easy launching: Java Web Start allows applications to be launched independently of a Web browser. The application can also be launched through desktop shortcuts, making launching the Web-deployed application similar to launching a native application.
- Ability to work offline: An application can be used in situations where launching through the browser is inconvenient or impossible.
BobIf it's such a lie, how come I'm currently working on an application that is developed on Windows and Linux (office/home) with a Sun JDK and then deployed on an AS/400 with an IBM JRE and it doesn't break a sweat? It just works. That's 3 OSs and 2 completely different versions of the JRE. The only time I ever came across non-portable Java was when I inherited a bunch of code that had hard-coded path delimiters and things inside it - in other words we're talking PEBKAC. There are utility classes to make everything OS/platform agnostic, if you don't use them it's not going to be portable, it's also bad practice. I ended up firing the guy who put in hardcoded paths. Not for that particular example, but just because he couldn't code very well in general.
Bob
...for the first two (non-source controlled changes and lack of comments) is simply to tell all the developers that if they don't start doing this right now then they will be fired. Both of those things are individual problems and are some of the signs of a bad developer. If they're not prepared to improve their own personal precedures, show them the door...
Bob
Just because someone doesn't buy into the tripe of "from each according to his ability, to each according to his need", doesn't make them right wing.
Regardless of the left/right thing, that statement comes from a heartless bastard who doesn't care about those less fortunate than themselves. That is what is supposed to set us aside as humans, you know, that altruism thing? You may as well be a chimp. Strangely enough, that description also fits the current US president...
Bob
You are confusing "free" with "taxpayer supported". Free is an illusion generated by people who don't get economics.
You are right of course, but what that effectively means is that those most able to pay are the ones that do, and the ones that can't pay don't have to. Here in the UK the phrase that politicians tend to use is "free at the point of treatment" which is exactly what it is. This is the only fair way of doing it IMO which is why the vast majority of Western nations implement something similar.
Bob
I'm not American, just looking from the outside. So I just Googled Pelosi (no point in Kennedy, don't know which one you're talking about). So I find her website and I haven't got time to read it all as I'm at work now but this immediately jumped out at me:-
to make health care and college more affordable
Anything other than free healthcare and education for all is a right wing policy.
Bob
Republicans (normally Whigoids, to UKers) have turned the political process into a tribalist scrum rather than an informed debate. The Democrats (normally Toryoids, to UKers)
Not quite. Republicans would be more like the BNP (far-right, religious lunatic, massively patriotic to the point of getting racist), Democrats would be like the Conservatives (generally right wing, but not as extreme).
Bob
Except the Democrats are not a left wing party. They are a right wing party that are just not quite as right wing as the Republicans. America doesn't have a left wing party which is why it's going to hell in a handbasket. There are no checks and balances. It's right wing or further right wing only.
Bob
Do you seriously trust the UN more than the US? Even under the current administration?
Speaking as a British person, I can answer that statement with an emphatic YES!!!
Bob
Frenching refers to the method of preparation; it's an archaic term for slicing into a million lengthy pieces.
Er no. That's down to your inability to deal with foreign languages. That method of preparation is called Julienne, it's just been Americanised to "Frenching"
Also note - Cafetiere is a French Press in the US (Wikipedia even redirects you helpfully)
I'm sure that there are many other examples. It seems that if the word is from the French, then in US English the object becomes a "French [something]" or similar derivative.
Bob
More importantly the French created French Fries so maybe we should be calling them pommes frites instead... AND WE created Potato Chips and thats the god damn name we gave it! Its you dumb bastards who insist on calling them weird fucking British slang things instead of their true names who should get a clue.
;-)
Actually it was the Belgians that invented French Fries. It's you dumb bastards who can't tell the difference between two European countries that should get a clue
Bob
True. But you've just proved my point. You're educating a bunch kids to be clerical staff if all you teach is MS Office.
Bob
And that statement, right there, is why the US economy is swirling down the drain...
Bob
Also note:-
Before liberation in 2002 - Iraq was at number 130
After liberation in 2006 - Iraq is at number 154
Bob
Take anything on that Spy Blog with a very large sack of salt. They wrote about one of the projects I was involved in a few years back, and it was just about the most complete load of uninformed bollocks I've ever read.
Bob
Any store can refuse to stock any title it feels like for whatever reason. The only reason this is news is because they have come out and explained why they are not socking it. If they hadn't come out and explained, no-one would have noticed. They'd maybe have tried to buy it in those stores, found it wasn't there, and gone along to Game or HMV, or a Virgin Megastore etc etc instead.
I suspect these stores are putting this story out into the press, because as the grandparent says, these stores aren't really known for selling games and this is a way for them to remind people that they do.
Bob
Interesting technique. I used things called Active Shape Models in my MSc thesis which do pretty much the same kind of thing if I understand the article correctly. I've since lost touch with the academic research. Can anyone who still works in the area give me a quick run down of the differences and pros/cons?
Bob
They are not subject to the US court system. If it was me in this position I'd be sending the judge an e-mail with a picture of me holding up my middle finger. Then I'd move my operations to a .org.uk address and notify my customers.
Bob