This week’s feature is the effective use of Transformation functions. Reference Manual This excerpt is taken from the updated Reference Manual section of Ivan Ristic’s book ModSecurity Handbook. Transformation functions are used to alter input data before it is used…

continue reading.....

This week’s feature is the effective use of Transformation functions. Reference Manual This excerpt is taken from the updated Reference Manual section of Ivan Ristic’s book ModSecurity Handbook. Transformation functions are used to alter input data before it is used…

continue reading.....

Five days after the announcement of Voice and Video Chat service in Gmail for Debian-based Linux distributions, Google unveiled a Gmail phone call service for Windows, Mac, and Linux. Rather than having both parties tied to their computers and logged i…

continue reading.....

This is a proof of concept, self replicating, social network based malware for NING.

continue reading.....

Web-Ideas Web Shop Standard suffers from a remote SQL injection vulnerability.

continue reading.....

Mandriva Linux Security Advisory 2010-166 – Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; a crafted JPEG …

continue reading.....

Zero Day Initiative Advisory 10-168 – This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malici…

continue reading.....

Tortoise SVN version 1.6.10 build 19898 suffers from the Windows DLL hijacking vulnerability.

continue reading.....

I wreck servers on a regular basis. Yep, I build and wreck multiple servers every day. As a Linux trainer I am always demonstrating how to build Linux servers in class and then blowing them away. Did it today, built an Ubuntu 10.04 server with Postfix …

continue reading.....

This post first appeared on Hullabaloo.
Sam Sedar did some interviews at the Beck Rally on Saturday. This one is particularly interesting because of the conflation of Obama being a Muslim and his adherence to Jeremiah Wright’s ideology. I supp…

continue reading.....

HP Security Bulletin – A potential security vulnerability has been identified with HP Insight Diagnostics Online Edition running on Linux. The vulnerability could be exploited remotely resulting in cross site scripting (XSS).

continue reading.....

continue reading.....

Starting with the Next version of Opera, as of the next snapshot release (due sometime later today), we are discontinuing the PowerPC architecture on Mac and Linux.

continue reading.....

What I want is simple: a way to share certain things with my friends, and other things with everyone. “Simple” is the keyword there because you can do that with Facebook, but it’s not simple enough. I want flick-one-switch simple, not create list, use drop-down, choose Everyone or Friends and Networks, Friends of Friends, Friends Only, Customize simple. A few startups are starting to get this level of ease — Treehouse is one of them.

When we last wrote about Treehouse back in June, I noted that it was perhaps the perfect app for sharing Bros Icing Bros pictures. Sadly, that meme died at the hands of Smirnoff Ice. But luckily, Treehouse has become even more useful since then. Notably, the iPhone photo-sharing app has a revamped interface that allows you to comment directly from photo pages, swipe left and right to quickly browse photos, and swipe down to see comments, likes, and location. There are also some nice new overlays that show all this information. And you can now leave photo comments.

continue reading.....

CNN: Gmail looks to clear clutter with Priority Inbox

continue reading.....

SANS: Interesting PHP injection

continue reading.....

The Atlantic: Prison Without Walls

continue reading.....

The keyboard on [Marek's] laptop stopped working. He didn’t want to buy a replacement so he decided to start using an external keyboard. But hauling around a full 104-key model is a bit of a pain so he decided to make himself a shorter keyboard. He basically chopped off the 10-key pad on the right [...]

continue reading.....

The Obama administration should stop demanding that Cambodians pay for the bombs used to kill so many of their fellow citizens.

continue reading.....

Today, KDE updated the Applications, Platform and Plasma Workspaces to 4.5.1, a new releases bringing a number of important bugfixes on top of 4.5.0. 4.5.0 was released only three weeks ago and receives monthly service updates. 4.5.1 is the first in th…

continue reading.....

Debian Linux Security Advisory 2099-1 – Charlie Miller has discovered two vulnerabilities in OpenOffice.org Impress, which can be exploited by malicious people to compromise a user’s system and execute arbitrary code.

continue reading.....

If you’re too frail to take the full impact of a paintball round let this tank serve as your surrogate. The camera perched on top of the platform feeds video back to the operator’s head-mounted display. Instead of using a joystick or other traditional controller, the user aims by looking around, with his or her [...]

continue reading.....

Wind River has launched a new community site for Wind River Linux customers, engineers, and embedded Linux community experts. The Wind River Developer Community for Linux is designed as a collaborative site where Wind River Linux users can ask and answ…

continue reading.....

Virtual Hosting With PureFTPd And MySQL (Incl. Quota And Bandwidth
Management) On Fedora 13

This document describes how to install a PureFTPd server that uses
virtual users from a MySQL database instead of real system users. This
is much more perfo…

continue reading.....

Here’s a great magnetic levitator build. [Scott Harden] dug up the link after seeing that awesome rotating globe this morning. This version hangs objects below an electromagnet but it has a sensor system to provide a constant distance between magnet and object even if the payloads are a different weight. This is done with a [...]

continue reading.....

While the "free for web use" claims for H.264 by MPEG-LA sound great and have deceived many commentators, they are nothing new and contain no good news for open source software.

continue reading.....

In past articles our Android sample application GUIs have consisted of a simple button or two and the corresponding click-handler code. What if some of those buttons are only supposed to be available under specific device conditions? Examples include p…

continue reading.....

Nature: Hackers blind quantum cryptographers "Lasers crack commercial encryption systems, leaving no trace"

continue reading.....

[Alexy Sha] has done this fantastic hack, where he modified a magnetic floating globe to be motorized and spin on a tilted axis. The original globe was simply levitating via a magnet mounted inside. Though you could spin it by hand, it wasn’t motorized, and actually floated completely vertically instead of being tilted. [Alexy] wanted [...]

continue reading.....

Wine runs many Windows programs nicely these days, including more and more serious music applications. Dave profiles some of those applications running under the latest & greatest Wine 1.2
mor…

continue reading.....