If google were to index javascript, they would probably create their own interpreter which only interpreted content that was meaningful to a search engine.
If googlebot had to interpret every fade-in menu and every roll-over effect it would take substantially more resources for google to crawl the web. Googlebot would also be vulnerable to malicious scripts - or scripts built to waste its time.
> I had to delete my phpinfo.php file that I kept in the root of each domain I host.
if you left an open phpinfo() on your server (giving potential attackers access to filepaths, module version numbers, configuration options, apache server configuration options), you have a lot more to worry about than a little XSS.
See, when clients come begging that is the perfect time to MONETIZE! Except of course if you're a thick-headed geek and already programmed valuable features on your own time;)
It's difficult to develop such complex functionality using DRM for multiple platforms. I don't see a problem in selecting the most cost efficient platform and then working from that.
I bought fizzball a couple of months ago for my 5-year-old and both of us have enjoyed it a lot. It's a clever game, which appeals to both adults and kids.
What defaults in modern versions of PHP makes it likely for users to shoot themselves in the foot? You're right about magic_quotes, the question is what would happen if that weren't enabled?
I hope this is a joke, as it's a typical clueless report that blames PHP for all their troubles.
Obviously someone is NOT able to send spam though a machine JUST because they have PHP installed, the problem was with software that was installed on top of PHP.
As some one who "takes utmost care over security" questions you should have ask were:
- What version of PHP were you running
- What version of Mambo were you running
- Were you running any third party modules (most likely cause)
- Were you on the Mambo security Mailing list
If you were really interested in keeping a close eye on your server, you would have been aware of these things and wouldn't have put code which you weren't sure of on your server.
PHP can be written securely without using these new interfaces, so old code does not need to be rewritten to be secure.
PHP5 is gaining momentum amongst developers, everyone I know uses PHP5 for any new projects. So it's just a matter of time before it reaches critical mass and the applications that aren't ported over will stop being used.
The same thing can be said about windows (I know it's a bad comparison), regardless of the patches that MS does to windows XP, there are still a couple hundred thousand windows ME machines out there working their little hearts out in botnets. The fact that people don't fix security issues in old code shouldn't effect the quality of development on the current platform.
The "PHP Way" has always been to give the user sufficient power to shoot himself in the foot. The benefit is that the language itself is not slowed down by "features" which exists only to keep stupid programmers from hurting themselves.
There are projects (like hardened php and suhosin) which add these security features to the language itself.
There have also been "features" such as register_globals, the Get/Post/Cookie quoting and safe_mode which were prone to attack when not used correctly.
The "news" is that Stefan Esser unsubscribed from the security@php.net mailing list.
Stefan Esser will continue to work on PHP security through maintaining the Hardened PHP project [1] which is a patchset to PHP which enables some low level security features into the language, as well as the suhosin extension [2] for PHP which can be used without patching PHP and "protects servers and users from known and unknown flaws in PHP applications and the PHP core".
I am personally of the "full disclosure" security mindset, so if there was indeed an issue with the response time of the "PHP Security Response Team" then some outside pressure would be a good thing.
For all of those who are humor-deprived here is the context...
--
A large dairy animal approached Zaphod Beeblebrox's table, a large fat meaty quadruped of the bovine type with large watery eyes, small horns and what might almost have been an ingratiating smile on its lips.
'Good evening', it lowed and sat back heavily on its haunches, 'I am the main Dish of the Day. May I interest you in the parts of my body?'
It harrumphed and gurgled a bit, wriggled its hind quarters in to a more comfortable position and gazed peacefully at them.
Its gaze was met by looks of startled bewilderment from Arthur and Trillian, a resigned shrug from Ford Prefect and naked hunger from Zaphod Beeblebrox.
'Something off the shoulder perhaps?' suggested the animal, 'Braised in a white wine sauce?'
'Er, your shoulder?' said Arthur in a horrified whisper.
'But naturallymy shoulder, sir,' mooed the animal contentedly, 'nobody else's is mine to offer.'
Zaphod leapt to his feet and started prodding and feeling the animal's shoulder appreciatively.
'Or the rump is very good,' murmured the animal. 'I've been exercising it and eating plenty of grain, so there's a lot of good meat there.'
It gave a mellow grunt, gurgled again and started to chew the cud. It swallowed the cud again.
'Or a casselore of me perhaps?' it added.
'You mean this animal actually wants us to eat it?' whispered Trillian to Ford.
'Me?' said Ford, with a glazed look in his eyes, 'I don't mean anything.'
'That's absolutely horrible,' exclaimed Arthur, 'the most revolting thing I've ever heard.'
'What's the problem Earthman?' said Zaphod, now transfering his attention to the animal's enormous rump.
'I just don't want to eat an animal that's standing there inviting me to,' said Arthur, 'It's heartless.'
'Better than eating an animal that doesn't want to be eaten,' said Zaphod.
'That's not the point,' Arthur protested. Then he thought about it for a moment. 'Alright,' he said, 'maybe it is the point. I don't care, I'm not going to think about it now. I'll just... er... I think I'll just have a green salad,' he muttered.
'May I urge you to consider my liver?' asked the animal, 'it must be very rich and tender by now, I've been force-feeding myself for months.'
'A green salad,' said Arthur emphatically.
'A green salad?' said the animal, rolling his eyes disapprovingly at Arthur.
'Are you going to tell me,' said Arthur, 'that I shouldn't have green salad?'
'Well,' said the animal, 'I know many vegetables that are very clear on that point. Which is why it was eventually decided to cut through the whoile tangled problem and breed an animal that actually wanted to be eaten and was capable of saying so clearly and distinctly. And here I am.'
It managed a very slight bow.
'Glass of water please,' said Arthur.
'Look,' said Zaphod, 'we want to eat, we don't want to make a meal of the issues. Four rare stakes please, and hurry. We haven't eaten in five hundred and sevebty-six thousand million years.'
The animal staggered to its feet. It gave a mellow gurgle. 'A very wise coice, sir, if I may say so. Very good,' it said, 'I'll just nip off and shoot myself.'
He turned and gave a friendly wink to Arthur. 'Don't worry, sir,' he said, 'I'll be very humane.'
Phishing is a BIG problem with Yahoo (and other big websites) plenty of users lose control of their Yahoo! IDs (granted they are not so bright, as seen by the average IQ of people who responded to this post).
I would hate for a phishing attack on Yahoo to make my site vulnerable. And with more and more websites popping up Yahoo! signups, it just makes it easier for someone to spoof the form on their site and gather passwords.
In the Favor of Y! they have taken good steps against phishing attempts, but it still happens a lot.
Please enlighten me on why you think that engineering cybernetic implants that won't need excessive maintenance or energy, compared to their biological counterparts
Your body will eventually die, I can't see how living for 50 years as a 70-year-old will help anyone. I just don't see how the prevention of something totally natural is beneficial when we can be putting our focus into the next generation of life.
It costs money and a high-tech, energy-intensive infrastructure for what you propose. Prevention is cheaper. Partial cyborgs don't drastically reduce demands on food stocks, etc, either - there's still the biological component which has to be supported.
Prevention will be more expensive in the long run, we'll have less young people paying for keeping the old people alive.
A brain can theoretically live for much longer than a body can, as long as it continues to recieve everything it needs YOU will continue to live, and not just live, but live productivly, and pay off for the research into your cybernetic body:)
Isn't it better to not need a replacement in the first place (or is prevention now not seen as better than a cure).
Can you say "Overpopulation", "Aging Population", "Rising Prices in Health Care". When people start to live longer than they are naturally meant to the people that hurt are your children and grandchildren.
When my natural body passes, I would prefer to continue my life as a cyborg. The development will also benefit others than the age. When we populate other planets, why should we be so concerned about the planet supporting our natural life when in cybernetic bodies we could populate just about any planet we want. All we'll need is enough to keep our brains working;)
Slashdot Mirror
at least he didn't dive to avoid hitting Uranus
If google were to index javascript, they would probably create their own interpreter which only interpreted content that was meaningful to a search engine.
If googlebot had to interpret every fade-in menu and every roll-over effect it would take substantially more resources for google to crawl the web. Googlebot would also be vulnerable to malicious scripts - or scripts built to waste its time.
> less than 10% of people with an IQ above 120 have any faith/religous belief.
and at what IQ, do you learn how to spell religious?
> I had to delete my phpinfo.php file that I kept in the root of each domain I host.
if you left an open phpinfo() on your server (giving potential attackers access to filepaths, module version numbers, configuration options, apache server configuration options), you have a lot more to worry about than a little XSS.
unfortunatly, you're not alone.
Nobody has mentioned Barack Obama's flickr feed.
See, when clients come begging that is the perfect time to MONETIZE! Except of course if you're a thick-headed geek and already programmed valuable features on your own time ;)
It's difficult to develop such complex functionality using DRM for multiple platforms. I don't see a problem in selecting the most cost efficient platform and then working from that.
I bought fizzball a couple of months ago for my 5-year-old and both of us have enjoyed it a lot. It's a clever game, which appeals to both adults and kids.
Good graphics and sound-track.
What defaults in modern versions of PHP makes it likely for users to shoot themselves in the foot? You're right about magic_quotes, the question is what would happen if that weren't enabled?
I hope this is a joke, as it's a typical clueless report that blames PHP for all their troubles.
Obviously someone is NOT able to send spam though a machine JUST because they have PHP installed, the problem was with software that was installed on top of PHP.
As some one who "takes utmost care over security" questions you should have ask were:
- What version of PHP were you running
- What version of Mambo were you running
- Were you running any third party modules (most likely cause)
- Were you on the Mambo security Mailing list
If you were really interested in keeping a close eye on your server, you would have been aware of these things and wouldn't have put code which you weren't sure of on your server.
http://ogoproject.com/
PHP can be written securely without using these new interfaces, so old code does not need to be rewritten to be secure. PHP5 is gaining momentum amongst developers, everyone I know uses PHP5 for any new projects. So it's just a matter of time before it reaches critical mass and the applications that aren't ported over will stop being used. The same thing can be said about windows (I know it's a bad comparison), regardless of the patches that MS does to windows XP, there are still a couple hundred thousand windows ME machines out there working their little hearts out in botnets. The fact that people don't fix security issues in old code shouldn't effect the quality of development on the current platform.
use PHP 5.2
;)
ext/filter takes care of a lot of the input filtering mess. PDO takes care of the database specific quoting, as well as prepared statements.
PHP sucked 5 years ago, but is coming together now
The "PHP Way" has always been to give the user sufficient power to shoot himself in the foot. The benefit is that the language itself is not slowed down by "features" which exists only to keep stupid programmers from hurting themselves. There are projects (like hardened php and suhosin) which add these security features to the language itself. There have also been "features" such as register_globals, the Get/Post/Cookie quoting and safe_mode which were prone to attack when not used correctly.
The "news" is that Stefan Esser unsubscribed from the security@php.net mailing list.
5 -Stefan-Esser-quits-securityphp.net.html
Stefan Esser will continue to work on PHP security through maintaining the Hardened PHP project [1] which is a patchset to PHP which enables some low level security features into the language, as well as the suhosin extension [2] for PHP which can be used without patching PHP and "protects servers and users from known and unknown flaws in PHP applications and the PHP core".
I am personally of the "full disclosure" security mindset, so if there was indeed an issue with the response time of the "PHP Security Response Team" then some outside pressure would be a good thing.
More about this on Zeev's blog [3].
[1] http://www.hardened-php.net/
[2] http://www.hardened-php.net/suhosin.127.html
[3] http://www.suraski.net/blog/index.php?/archives/1
You also get ads before and after your show. The good side is that IF your show gets popular you may be able to get a cut from those ads.
Personally I would prefer to just pay for my own hosting and run wordpress.
Getting your advice from slashdot.
For all of those who are humor-deprived here is the context...
... er ... I think I'll just have a green salad,' he muttered.
--
A large dairy animal approached Zaphod Beeblebrox's table, a large fat meaty quadruped of the bovine type with large watery eyes, small horns and what might almost have been an ingratiating smile on its lips.
'Good evening', it lowed and sat back heavily on its haunches, 'I am the main Dish of the Day. May I interest you in the parts of my body?'
It harrumphed and gurgled a bit, wriggled its hind quarters in to a more comfortable position and gazed peacefully at them.
Its gaze was met by looks of startled bewilderment from Arthur and Trillian, a resigned shrug from Ford Prefect and naked hunger from Zaphod Beeblebrox.
'Something off the shoulder perhaps?' suggested the animal, 'Braised in a white wine sauce?'
'Er, your shoulder?' said Arthur in a horrified whisper.
'But naturallymy shoulder, sir,' mooed the animal contentedly, 'nobody else's is mine to offer.'
Zaphod leapt to his feet and started prodding and feeling the animal's shoulder appreciatively.
'Or the rump is very good,' murmured the animal. 'I've been exercising it and eating plenty of grain, so there's a lot of good meat there.'
It gave a mellow grunt, gurgled again and started to chew the cud. It swallowed the cud again.
'Or a casselore of me perhaps?' it added.
'You mean this animal actually wants us to eat it?' whispered Trillian to Ford.
'Me?' said Ford, with a glazed look in his eyes, 'I don't mean anything.'
'That's absolutely horrible,' exclaimed Arthur, 'the most revolting thing I've ever heard.'
'What's the problem Earthman?' said Zaphod, now transfering his attention to the animal's enormous rump.
'I just don't want to eat an animal that's standing there inviting me to,' said Arthur, 'It's heartless.'
'Better than eating an animal that doesn't want to be eaten,' said Zaphod.
'That's not the point,' Arthur protested. Then he thought about it for a moment. 'Alright,' he said, 'maybe it is the point. I don't care, I'm not going to think about it now. I'll just
'May I urge you to consider my liver?' asked the animal, 'it must be very rich and tender by now, I've been force-feeding myself for months.'
'A green salad,' said Arthur emphatically.
'A green salad?' said the animal, rolling his eyes disapprovingly at Arthur.
'Are you going to tell me,' said Arthur, 'that I shouldn't have green salad?'
'Well,' said the animal, 'I know many vegetables that are very clear on that point. Which is why it was eventually decided to cut through the whoile tangled problem and breed an animal that actually wanted to be eaten and was capable of saying so clearly and distinctly. And here I am.'
It managed a very slight bow.
'Glass of water please,' said Arthur.
'Look,' said Zaphod, 'we want to eat, we don't want to make a meal of the issues. Four rare stakes please, and hurry. We haven't eaten in five hundred and sevebty-six thousand million years.'
The animal staggered to its feet. It gave a mellow gurgle. 'A very wise coice, sir, if I may say so. Very good,' it said, 'I'll just nip off and shoot myself.'
He turned and gave a friendly wink to Arthur. 'Don't worry, sir,' he said, 'I'll be very humane.'
It waddled unhurriedly off to the kitchen.
Phishing is a BIG problem with Yahoo (and other big websites) plenty of users lose control of their Yahoo! IDs (granted they are not so bright, as seen by the average IQ of people who responded to this post).
I would hate for a phishing attack on Yahoo to make my site vulnerable. And with more and more websites popping up Yahoo! signups, it just makes it easier for someone to spoof the form on their site and gather passwords.
In the Favor of Y! they have taken good steps against phishing attempts, but it still happens a lot.
nuff said
YouTube is hosting illegal videos, that is illegal anywhere. ThePirateBay just links to torrents, there is nothing illegal about that (in Sweden).
Not everyone will be able to afford life anti-aging medication. This will create a 2-class system.
A brain can theoretically live for much longer than a body can, as long as it continues to recieve everything it needs YOU will continue to live, and not just live, but live productivly, and pay off for the research into your cybernetic body
When my natural body passes, I would prefer to continue my life as a cyborg. The development will also benefit others than the age. When we populate other planets, why should we be so concerned about the planet supporting our natural life when in cybernetic bodies we could populate just about any planet we want. All we'll need is enough to keep our brains working