Related Categories:
Agile Programming
Computer Humor
Computers
CSharp
Dot Net
Emerald Software Group
Fox Business News
Fox News
Humor
InformIT
News
Onboarding
PHP
Programming
Project Management
Science
Science News
Service Oriented Architecture
SOA
SQL Server
Technology
Technology News
Video
Web Development
Web Services
Windows Programming
Yahoo News
|
|
|
Apple Browsing Share Tops Linux, Android Steals Share Everywhere
(PC World)
PC World - More people browsed the Internet last month with a device running Apple's mobile operating system, iOS, than used Linux to do so. That's a first for Apple, according to NetMarketShare, a firm that produces metrics on the market share of browsers, operating systems and search engines. Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
|
US STOCKS-Wall St rallies as jobs data spurs optimism
US STOCKS-Wall St rallies as jobs data spurs optimism Categories: Fox Business News | FoxBusiness Technology | News | Technology | Technology News |
|
Subversion Migration Complete
The migration from CVS to Subversion is complete. The web interface is at svn.php.net. You can read about it at php.net/svn.php, wiki.php.net/vcs/svnfaq. The URL to feed to your svn client is http://svn.php.net/repository. There is also a github mirror. Please use that instead of trying to do a full git clone from the svn repository. See the instructions at wiki.php.net/vcs/svnfaq#git Many thanks to Gwynne who did the bulk of the work and also all the other folks who pitched in. It was a major effort to move 14 years of CVS history to another RCS. Categories: Computers | PHP | PHP Hypertext Preprocessor | Programming | Technology |
|
Stoned!
When Greg was shopping for jobs at his college’s career fair, there was a whole lot of business as usual. The larger banks were on-hand looking to swoon the upcoming Financial grads. Several representatives from a few big name manufacturing corporations were there to interview the Chemistry majors and a few IT firms were on the lookout for the soon-to-be CS grads, like Greg, to add to their ranks. However, amid the ocean of pamphlets and suits there was one aerospace corporation with one particular position that caught Greg’s attention. The position that he applied and was ultimately hired for could be summed up in one sentence: “You’ll be testing laser tag games for the military.” A Dream Come True!...kind ofActually, Greg’s official title was “QA Analyst for Battlefield Training Simulation Systems” but the idea of the system being a great big laser tag game really wasn’t all that far off the mark. The way the existing setup worked was that sensors on a soldier’s body vest would detect a “hit” during the simulation, and would then set off an annoying alarm that could only be turned off with a special key. Once deactivated, the solder was ‘dead’ for the rest of the training scenario. It all worked, but one big problem with the whole setup was that, to the displeasure of many, a few enterprising soldiers managed to get their hands on and started selling tester keys (also known as “God Keys”) that allowed soldiers to resurrect themselves and get back into the battle. After a number of years of trying to prevent soldiers from exploiting the system and a host of other technical headaches, the military was finally able to replace their system with something a little newer. New features like the addition of GPS tracking units, RF data modules reporting hits and their locations and a slew of backend upgrades meant that military trainers could execute more extensive and complex training scenarios and, over time, recoup the costs because the new system was designed to rely on “off the shelf” 3rd party solutions, but first, these solutions would need to be vetted by QA guys like Greg. Getting StonedLike any new hire, Greg was completely pumped and ready to contribute and shake things up his first week, but as time went by, Greg’s excitement dwindled when he found that doing QA analysis didn’t really involve shooting co-workers with laser guns, but instead was a lot of tedious, hard work with project managers and piled on bureaucracy for good measure. In one particular situation they received a firmware update for one of the GPS systems being used in the Player Unit modules. While trying to figure out why the latest hardware revision was failing immediately after the first test he noticed that the GPS receiver would send out a burst of garbage every few seconds. Puzzled by this he checked and re-checked the connections and tried one of the spare units only to find the same result. Everything seemed like it should fine and the supplier swore there was nothing wrong with their system. Not able to let something like this go, Greg spent many late-night hours pouring through raw dumps of the results and along the way, he began to notice a pattern of the same Hex data repeating in the noise. As he painstakingly translated the hexadecimal into ASCII, he was genuinely surprised upon being greeted with a curious snippet of text. Your PC is now Stoned! After a quick search on the message, it all made sense. Somehow, the firmware upgrade for the GPS system had become infected with a disk boot sector virus, which ran perfectly fine on the embedded processor. Since this virus couldn't write itself to a disk, as there were no floppy drives on the GPS card, it instead sent itself out through the RS-232 port once every 5 seconds in hopes of infecting another computer. Greg wrote up his analysis and forwarded it off to the vendor, who quickly (and quietly) issued another update to their firmware, identical to the last except without the virus. Upon loading of the updated firmware, Greg noticed the difference immediately and was pleased to see that the vendor's "fix" resolved the "data issue" that he'd reported, however, there was a small catch to this tiny update. You see, preliminary testing for military equipment is a long and detailed process that makes the most draconian corporate processes look positively streamlined. Also, since the magic keyword "virus" had been uttered, QA testing couldn't just pick up where it left off, and couldn't just be for the GPS module. In fact, Greg had to start over at step 1 with added "anti-virus" steps add in for good measure just to be sure.
Categories: Computer Humor | Computers | Humor | Programming | Technology | The Daily WTF |
|
CodeSOD: Role-based Canary
Role-based security requires, at a minimum, two key elements: users and roles. Roles (such as Administrator, Clerk, and ViewOnlyUser) are defined by the application code and then assigned to users to restrict which functions of the application they may use. It's a pretty simple concept that involves all of two database tables, or one if the user names come from some external source like Active Directory. In Adam's case, the Role-based security feature served as a coalmine canary in the application he was tasked with reviewing. Although it passed all of the test cases — employees could only do certain things, customers could do other things, etc. — there was one fundamental flaw with the system. See if you can spot it.
The As for the rest of the system, it's development was similar: it passed the test cases and little more.
Categories: Computer Humor | Computers | Humor | Programming | Technology | The Daily WTF |
|
CodeSOD: Masquerading as a Loop
"While digging through some inherited code," writes Joe "M2tM" Smith, "I encountered a conditional masquerading as a loop." "Thankfully, the fellow responsible is 'no longer with us', and I suppose this type of code stands as silent testament to why. This interesting loop is only created so the break keyword can be used as an elaborate GOTO."
Categories: Computer Humor | Computers | Humor | Programming | Technology | The Daily WTF |
|
Chrome Browser Updated After Two Years of Growth
(NewsFactor)
NewsFactor - Google's Chrome browser is now two years old, and the youngster -- and its proud parent -- are celebrating its steady rise in popularity. According to Net Applications, Chrome had 7.5 percent of the browser market in August -- putting it in third place behind Microsoft's Internet Explorer and Mozilla's Firefox, and above Apple's Safari. Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
|
WordPress upgrades free app for blogging on the go
(Appolicious)
Appolicious - The free WordPress for Android app was upgraded thanks to feedback from faithful users. Updates include fixes to numerous, annoying bugs like unexpected app crashes, log-in issues and more.Most notable in the recent upgrade is a new comment feature, which displays comments in real time as comments arrive in your Droid notification bar. Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
|
Error'd: CAPTCHA'd
What's that, you say? We should have an entire Error'd dedicated to CAPTCHA images? Sure, why not! Alex van Herwijnen spotted this interesting problem presented... ... which, of course Dan Ferrante noticed that ESPN provided a solution for. You're right though, spousal abuse is not funny. But I know what is! Bathroom humor, like what Scott Lewis found at Ticketmaster! See? Even Avast! anti-virus software is getting a peece of that action (from Viront). "Really?" Justin Self wrote, "I have to type this? I just needed some help with Java!" Well Justin, help was out there... but not for your Java. Matt found this combo, which seems to help with the previous pain in the butt. I guess I'll take the advice that Tim Gourley saw, at keep it clean from now on. Moving on, Andy wondered if Bloglines really wanted their CAPTCHA to be linked to the KKK. "Admittedly, this took me a lot longer to solve than usual," wrote Dan Thompson, "but when I finally got to upload my image, I felt a real sense of achievement."
Categories: Computer Humor | Computers | Humor | Programming | Technology | The Daily WTF |
|
Time Warner Cable Deal Brings Disney Into `TV Everywhere' Fold
Time Warner Cable Deal Brings Disney Into `TV Everywhere' Fold Categories: Fox Business News | FoxBusiness Technology | News | Technology | Technology News |
|
Error'd: Logon-ing Off
Andrew Carpenter writes, "I guess this is like turn-oning off a switch?" "While trying to signup for a Windows Live account, I found myself without my best friend Neil," wrote Rob, "unfortunately, my second-best friend Ray, third-best friend Jane, and fourth-best friend Tom are also excluded." "I got this rather odd message when trying to install the Evo Java client," wrote Nick Edwards, "I clicked OK and it worked... even though I wasn't SURE_IT_WORKS!" "I'm not sure why Google would omit entries and return zero results," Michael noted, "clicking on the link, I received 0 omitted results which were indeed very similar." "YUM!! Blank Insert bear claws," wrote Matthew Sowders "This came up while configuring Neverwinter Nights on my PC," Ville Rastas writes, "I was worried the game might not support today's high resolution screens, but I guess it's quite the opposite." "I knew IKEA has some funny names on it's furniture," writes Patrik, "but who knew they were into the new fashion trend of nerd chic? "According to Virgin Mobile," writes Glenn Jones, "Unlimited is twice as big as 10G (so maybe around 20G), except for videos where Unlimited is only 1.3 times 10G."
Categories: Computer Humor | Computers | Humor | Programming | Technology | The Daily WTF |
|
US EQUITIES WEEK AHEAD: Market Awaits Trade Data; Labor Day
US EQUITIES WEEK AHEAD: Market Awaits Trade Data; Labor Day Categories: Fox Business News | FoxBusiness Technology | News | Technology | Technology News |
|
Disk Storage Still Bouncing Back, IDC Says
(PC World)
PC World - The market for enterprise disk storage systems grew strongly in the second quarter, continuing to recover from a slump brought on by the economic slowdown of 2008 and 2009, research company IDC said on Friday. Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
|
Facebook Glitch Let Spammer Post to Walls
(PC World)
PC World - A clever spammer found a glitch in Facebook's photo upload system and used it to post thousands of unwanted Wall messages this week. Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
|
Fast Fix
"Holger, these folks are experts," his manager replied. "It isn't cost effective to hire-on this level of expertise full time. We may pay a little more up front, but when we don't need the consultants anymore, we can hand it off to our internal people." Holger left that discussion pretty sure he had just been called incompetent. Maybe I should ask the consultants if they're hiring, Holger wondered to himself, thinking of the big money they pulled down relative to his salary. The thought was still percolating in his head when he sat down with the two newest consultants, Zack and Jack for their status meeting. Holger hooked his laptop up to the projector and ran through a few recent changes in the configuration database, discussed the implications, and then moved onto other topics. He stopped paying attention to the computer, and it eventually dropped to its screensaver. Moments later, there was some snickering from Zack. "Having some computer trouble?" Jack asked, mockery in his tone. Holger glanced at the projection screen and saw that his screensaver was was running merrily. It merrily painted a BSOD to the screen, with plausible driver dumps, merrily churned the disk a little, like it was saving the contents of RAM, and merrily ran through a simulated reboot sequence. After which, the process repeated itself, merrily. "Oh," Holger said, "that happens sometimes. I've got it under control. No worries." "Yeah, whatever," Jack said. The meeting continued. The product of the meeting, like too many other meetings with consultants, resulted in the need for another meeting. "Let's see what my calendar looks like," Holger said. He grabbed the mouse, killed the screensaver, and called up his email client. Zack gasped. "How did you do that?" Jack marveled. "Oh, that?" Holger said. With his best deadpan, he said, "I got tired of waiting for the reboots to complete. I put together a tool that does an automatic fix and restart, letting me just continue right from where I left off." Holger waited a beat. After a moment, he was certain that these consultants would realize he was pulling their leg. Zack was up in a flash and quietly closed the door. Jack leaned across the table towards Holger and asked, "Did you make that on company time? And does anyone here know if you did? Because before we go back into that hallway, I want to buy this off of you." "You don't have that kind of cash," Holger said. "No, but I can put it on the expense account and then pay it off when I get VC funding," Jack said. Holger spent the next fifteen minutes declining their offers to buy his tool. In the process, he discovered that the consultants had creative and unethical ideas about how to quickly get funding, and that one of them had a trophy wife that would do anything for the kinds of profits they were talking about. "And I do mean anything," Zack said with a leer. Finally, Holger "confessed". "Look, you guys are generous and all, but I've already signed a contract with another company. Even if you could beat their offer, I can't break a contract." "Sure you can!" Holger left the meeting without any interest in finding out if their company had any openings.
Categories: Computer Humor | Computers | Humor | Programming | Technology | The Daily WTF |
|
Review: mTrip iPhone app uses augmented reality
(AP)
Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
|
PHP 5.3.3 Released!
The PHP development team would like to announce the immediate availability of PHP 5.3.3. This release focuses on improving the stability and security of the PHP 5.3.x branch with over 100 bug fixes, some of which are security related. All users are encouraged to upgrade to this release. Backwards incompatible change:Methods with the same name as the last element of a namespaced class name will no longer be treated as constructor. This change doesn't affect non-namespaced classes. There is no impact on migration from 5.2.x because namespaces were only introduced in PHP 5.3.Security Enhancements and Fixes in PHP 5.3.3:Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs (CVE-2010-2531).Fixed a possible resource destruction issues in shm_put_var().Fixed a possible information leak because of interruption of XOR operator.Fixed a possible memory corruption because of unexpected call-time pass by refernce and following memory clobbering through callbacks.Fixed a possible memory corruption in ArrayObject::uasort().Fixed a possible memory corruption in parse_str().Fixed a possible memory corruption in pack().Fixed a possible memory corruption in substr_replace().Fixed a possible memory corruption in addcslashes().Fixed a possible stack exhaustion inside fnmatch().Fixed a possible dechunking filter buffer overflow.Fixed a possible arbitrary memory access inside sqlite extension.Fixed string format validation inside phar extension.Fixed handling of session variable serialization on certain prefix characters.Fixed a NULL pointer dereference when processing invalid XML-RPC requests (Fixes CVE-2010-0397, bug #51288).Fixed SplObjectStorage unserialization problems (CVE-2010-2225).Fixed possible buffer overflows in mysqlnd_list_fields, mysqlnd_change_user.Fixed possible buffer overflows when handling error packets in mysqlnd.Key enhancements in PHP 5.3.3 include:Upgraded bundled sqlite to version 3.6.23.1.Upgraded bundled PCRE to version 8.02.Added FastCGI Process Manager (FPM) SAPI.Added stream filter support to mcrypt extension.Added full_special_chars filter to ext/filter.Fixed a possible crash because of recursive GC invocation.Fixed bug #52238 (Crash when an Exception occured in iterator_to_array).Fixed bug #52041 (Memory leak when writing on uninitialized variable returned from function).Fixed bug #52060 (Memory leak when passing a closure to method_exists()).Fixed bug #52001 (Memory allocation problems after using variable variables).Fixed bug #51723 (Content-length header is limited to 32bit integer with Apache2 on Windows).Fixed bug #48930 (__COMPILER_HALT_OFFSET__ incorrect in PHP >= 5.3). For users upgrading from PHP 5.2 there is a migration guide available on http://php.net/migration53, detailing the changes between those releases and PHP 5.3. For a full list of changes in PHP 5.3.3, see the ChangeLog. Categories: Computers | PHP | PHP Hypertext Preprocessor | Programming | Technology |
|
PHP 5.2.11 Released!
The PHP development team would like to announce the immediate availability of PHP 5.2.11. This release focuses on improving the stability of the PHP 5.2.x branch with over 75 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release. Security Enhancements and Fixes in PHP 5.2.11:Fixed certificate validation inside php_openssl_apply_verification_policy. (Ryan Sleevi, Ilia)Fixed sanity check for the color index in imagecolortransparent(). (Pierre)Added missing sanity checks around exif processing. (Ilia)Fixed bug #44683 (popen crashes when an invalid mode is passed). (Pierre) Further details about the PHP 5.2.11 release can be found in the release announcement, and the full list of changes are available in the ChangeLog. Categories: Computers | PHP | PHP Hypertext Preprocessor | Programming | Technology |
|
PHP 5.2.12 Released!
The PHP development team would like to announce the immediate availability of PHP 5.2.12. This release focuses on improving the stability of the PHP 5.2.x branch with over 60 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release. Security Enhancements and Fixes in PHP 5.2.12:Fixed a safe_mode bypass in tempnam() identified by Grzegorz Stachowiak. (CVE-2009-3557, Rasmus)Fixed a open_basedir bypass in posix_mkfifo() identified by Grzegorz Stachowiak. (CVE-2009-3558, Rasmus)Added "max_file_uploads" INI directive, which can be set to limit the number of file uploads per-request to 20 by default, to prevent possible DOS via temporary file exhaustion, identified by Bogdan Calin. (CVE-2009-4017, Ilia)Added protection for $_SESSION from interrupt corruption and improved "session.save_path" check, identified by Stefan Esser. (CVE-2009-4143, Stas)Fixed bug #49785 (insufficient input string validation of htmlspecialchars()). (CVE-2009-4142, Moriyoshi, hello at iwamot dot com) Further details about the PHP 5.2.12 release can be found in the release announcement, and the full list of changes are available in the ChangeLog. Categories: Computers | PHP | PHP Hypertext Preprocessor | Programming | Technology |
|
Appeals court rules for Eminem in royalty lawsuit
(AP)
AP - A federal appeals court has found Eminem's former production company is entitled to more money from downloads of the rapper's songs and ringtones. Categories: News | Technology | Technology News | Yahoo News | Yahoo News Technology |
"Do you think it's wise to have consultants running our IT department?" Holger asked. It was an honest question, worded as diplomatically as possible. Holger's company had more consultants on hand than actual IT staff.