From OWASP Development Guide Applications MUST NOT implement questions and answers as they are contrary to most privacy regimes and ineffective http://code.google.com/p/owasp-development-guide/wiki/WebAppSecDesignGuide_D2 Personal note: web apps that allow you to bypass password authentication via security question/answer drive me batty. I have half a mind to start contacting the webmasters to show them the above. Aleksey
The alpha version of the Software Engineering Body of Knowledge Version 3 will be available in 4Q2011 for public commenting. www.swebok.org
I did something cool Friday. I was trying to document all the data flows in and out of our in-house Web app. First I put the data flows into a database table: source, sink, what is being transmitted, details on the source point, details on the sink point, is it a push or a pull,…
Excellent job prospects are expected for Computer Network, Systems, and Database Administrators. United States – Department of Labor – Bureau of Labor Statistics – Occupational Outlook Handbook, 2010-11 Edition – Computer Network, Systems, and Database Administrators http://www.bls.gov/oco/ocos305.htm
http://www.computerworld.com.au/article/216844/a-z_programming_languages_awk/ I found this quite enlightening — both to awk’s position in the grand scheme of things, and for a deeper appreciation of UNIX culture.
The Guide to the System Administration Body of Knowledge (SABOK) has been moved to http://sabok.org/
Well my old laptop finally bit the dust a few weeks ago so my company got me a nice, new shiny Thinkpad T420. This is wonderful except that newest linux distros (e.g. Ubuntu 11.04) is lacking a bit on the hardware support. A few days ago I finally had almost everything working. Multi-monitor support, Nvidia graphics, etc. and all my applications worked fine except for the wireless card (a Realtec RTL8188CE) which kept cutting in and out.
Continue reading
I’ve always thought of developers as being comparable to sysadmins. Sort of an item of a comparable magnitude. But I just realized there are a lot more Dev personnel than there are sysadmins. Specifically, I went to a Node.JS meetup in Los Angeles, and it was a joint meetup with UUASC-LA (a LOPSA affiliate). It…
So a while back I moved to an Epic 4G phone. It is more of a computer that also does phone stuff than a phone that does computer stuff. Since it is a computer, I wanted to see if I could use it like a computer. My eyes are still good enough to read the…
Vertical Sysadmin, an authorized Cfengine trainer, is offering a this-week-only special on 3 days of Cfengine training: hands on, in-depth, complete with lab exercises. Contact me if interested.