|
Ah. I can see the pic now. Was the monitor I was using at work.
Regards,
Brian Dela
|
|
|
|
|
I'd second that... although my guess is that as soon as articles get submitted on the topic that it would then be a go-er
What kind of detail though? Should it be stuff on hashing etc. that can be used to prevent URL manipulation etc. Or getting into the real network/sysadmin stuff -- something I've been doing recently whilst rebuilding a Linux router system.
--
Paul
"I need the secure packaging of Jockeys. My boys need a house!"
- Kramer, in "The Chinese Woman" episode of Seinfeld
MS Messenger: paul@oobaloo.co.uk
Sonork: 100.22446
|
|
|
|
|
I think both - especially web developers who know little on this subject leave their sites wide open. I know this guy who built a sales site (I wouldn't like to call it ecommerce as payment is taken manually on delivery) for a pharmacy in SA. Once you have chosen the products you want, and the quantities, you can actually change the price in the URL to whatever you want. When I discovered this and told him, his reaction was that it wasn't worth recoding as most people don't know this stuff. What a donut!!!
On the network side, I'm sure any developer who can setup firewalls etc, will be employed above one who doesn't. With the IT market the way it is at the moment, you can't have too many advantages above the competition
The following statement about your geekness is true. The previous statement about your geekness is false.
GCS/IT/P d- s: a- C++++$ UL+>++++ P+ L++$ E- W+++$ N !o K+ w++$ O---- M--
PS- PE Y+ PGP--- t !5 X- tv b+++ DI++ D+ G++ e++ h--- r+++
|
|
|
|
|
That settles it, my next article to CP will be one on web application security, probably some kind of summary of best practices with references to white papers of greater depth -- i.e. SQL injection, URL manipulation that kind of thing.
Right, gives me something to do for the next couple of days
--
Paul
"I need the secure packaging of Jockeys. My boys need a house!"
- Kramer, in "The Chinese Woman" episode of Seinfeld
MS Messenger: paul@oobaloo.co.uk
Sonork: 100.22446
|
|
|
|
|
Lol - great minds think alike... perhaps we can spread the good news that dev's can control their systems, rather than crackers controlling them! I will be including a link to http://online.securityfocus.com/infocus/1603[^] in my article - I'm sure you'll also find it interesting
The following statement about your geekness is true. The previous statement about your geekness is false.
GCS/IT/P d- s: a- C++++$ UL+>++++ P+ L++$ E- W+++$ N !o K+ w++$ O---- M--
PS- PE Y+ PGP--- t !5 X- tv b+++ DI++ D+ G++ e++ h--- r+++
|
|
|
|
|
You can search for WHo as "Article" "Name" "messages" how about personal messages or Blogs.
Regardz
Colin J Davies
Sonork ID 100.9197:Colin
You are the intrepid one, always willing to leap into the fray! A serious character flaw, I might add, but entertaining.
Said by Roger Wright about me.
|
|
|
|
|
|
The point is ....
ummm ummm ummm
OK !!!!
Someone requested it.
Regardz
Colin J Davies
Sonork ID 100.9197:Colin
You are the intrepid one, always willing to leap into the fray! A serious character flaw, I might add, but entertaining.
Said by Roger Wright about me.
|
|
|
|
|
As with lots of features, it could be done so they did it. I used to do that a lot, think of a cool idea which was fairly simple to do with existing code and then add it. I never considered the scheduling and testing impacts. Now, I write a lot of specs so I can think of cool things and get somebody else to implement them
Michael
Programming is great. First they pay you to introduce bugs into software. Then they pay you to remove them again.
|
|
|
|
|
I think it's quite entertaining trying to seek out the members who have personal messages, and posting bizarre replies
--
Help me! I'm turning into a grapefruit!
|
|
|
|
|
Just a thought on the new forums each user has attached to his bio - why not give the bio owner the ability to delete any posts made to the forum?
No sign that this is necessary at present, but i could certainly see it becoming useful in certain situations (not that anyone here would actually be so immature as to start a flame war in someone's bio, but...) . And i can't really see "trigger-happy" bio owners being a problem either, as the forums' scope is so narrow.
|
|
|
|
|
Shog9 wrote:
Just a thought on the new forums each user has attached to his bio - why not give the bio owner the ability to delete any posts made to the forum?
Very good idea Shog. I'll give my vote
Regards,
Brian Dela
|
|
|
|
|
Would it be possible to have an option on the new post/post-reply page where you can choose for that post to be posted anonymously. Nish's post about jobs in the soapbox made me think of this... if people did want to post as anonymous then they'd have to sign-out and then post and then sign-back in.
Just a thought. Just a thought..
Regards,
Brian Dela
|
|
|
|
|
If you are logged in and post under a name other than your signed in name then your post is marked as anonymous. There's no need to signout. (take this post as an example)
cheers,
Chris Maunder
|
|
|
|
|
Oh... I see Duh brian.
Regards,
Brian Dela
|
|
|
|
|
Or you could just stop posting anonymously.
Jeremy Falcon
Imputek
<nobr>"In fact it is quite simple, men and women both only want one thing - what they can't have!" - phykell
|
|
|
|
|
Jeremy Falcon wrote:
Or you could just stop posting anonymously.
I never have.. other than the one above... just that Nish's post about jobs thought it would be a good idea.
Regards,
Brian Dela
|
|
|
|
|
|
interesting
The following statement about your geekness is true. The previous statement about your geekness is not true.
GCS/IT/P d- s: a- C++++$ UL+>++++ P+ L++$ E- W+++$ N !o K+ w++$ O---- M--
PS- PE Y+ PGP--- t !5 X- tv b+++ DI++ D+ G++ e++ h--- r+++
|
|
|
|
|
hmmm wrote:
interesting
Isn't it
Regards,
Brian Dela
|
|
|
|
|
Learn something new everyday (even if you have to wait till just before bedtime )
The following statement about your geekness is true. The previous statement about your geekness is not true.
GCS/IT/P d- s: a- C++++$ UL+>++++ P+ L++$ E- W+++$ N !o K+ w++$ O---- M--
PS- PE Y+ PGP--- t !5 X- tv b+++ DI++ D+ G++ e++ h--- r+++
|
|
|
|
|
It is sickening beyond belief to see the same 4 or 5 articles day after day on the "Last 10 Updates" list. People make minor changes to their articles in order to stay on the list. Meanwhile, new articles often appear and disappear from the list in less than a half day. Why not have a tab for the "10 Newest Articles"? Keep the "Last 10 Updates", perhaps, but put it in a less prominent place. That way people can't manipulate the system by continually "updating" articles in order to keep them in the top 10.
|
|
|
|
|
Good idea.
cheers,
Chris Maunder
|
|
|
|
|
I agree with Chris. Very good idea
Regards,
Brian Dela
|
|
|
|
|
Hear hear. I get really tired of saying "Hey a new article!" When really it was one I just read a day or two ago.
David Stone
But Clinton wasn't a predictable, boring, aging, lying, eloquent, maintainer-of-the-status-quo. He was a predictable, boring-but-trying-to-look-hip, aging-and-fat-but-seemingly-oblivious-to-it, lying-but-in-sadly-blatant-ways, not-eloquent-but-trying-to-make-up-for-it-by-talking-even-more, bringer-in-of-scary-and-potentially-dangerous-new-policies. And there was also Al Gore. It just wasn't *right*.
Shog9
|
|
|
|