| |
| "I don't think the report is true, but these crises work for those who want to make fights between people." Kulam Dastagir, 28, a bird seller in Afghanistan
|
|
Ajax Security Book Out! Awesome buzz! |
|
|
|---|
| Topic: Technology |
10:48 am EST, Dec 21, 2007 |
Acidus writes:
Ajax Security is out and the feedback I'm getting is incredible.Andrew van der Stock The Executive Director of OWASP reviewed a draft of Ajax Security and here is what he had to say about it: If you are writing or reviewing Ajax code, you need this book. Billy and Bryan have done a stellar job in a nascent area of our field, and deserves success. Go buy this book. Is it just a re-hash of old presentations? No. The book breaks some new ground, and fills in a lot of the blanks in all of our presentations and demos. I hadn’t heard of some of these attacks in book form before. The examples improved my knowledge of DOM and other injections considerably, so there’s something there for the advanced folks as well as the newbies. I really liked the easy, laid back writing style. Billy and Bryan’s text is straightforward and easy to understand. They get across the concepts in a relatively new area of our field. The structure flows pretty well, building upon what you’ve already learnt ...
there is advanced stuff, but the authors have to bring the newbie audience along for the ride. Billy and Bryan spend a bit of time repeating the old hoary “no new attacks in Ajax” meme which is big with the popular kids (mainly because their products can’t detect or scan Ajax code yet and still want money from you), and then spend the rest of the book debunking their own propaganda with a wonderful panache that beats the meme into a bloody pulp and buries it for all time.
Web security guru dre offers up this review of Ajax Security: It’s quite possible that many Star Wars Ajax security fans will be calling Billy Hoffman, the great “Obi-Wan”, and pdp “Lord Vader” to represent the “light” and “dark” sides that is The Force behind the power wielded by Ajax. The book, Ajax Security, covered a lot of new material that hadn’t been seen or talked about in the press or the security industry. The authors introduced Ajax security topics with ease and provided greater understanding of how to view Javascript malware, tri... [ Read More (0.2k in body) ] Ajax Security Book Out! Awesome buzz!
|
|
Top Ten Astronomy Pictures of 2007 |
|
|
|---|
| Topic: Science |
10:47 am EST, Dec 21, 2007 |
There are so many incredible astronomical photographs released every year that picking ten as the most beautiful is a substantial task. But it becomes easier when you consider the science behind the image as well. Does this image tell us more than that one? Was the scientific result drawn from an image surprising, or did it firm up a previously considered hypothesis? Still, there’s something to be said for a simple, drop dead gorgeous picture. So here I present my Top Ten Astronomy Pictures for 2007.
Top Ten Astronomy Pictures of 2007 |
|
PhreakNIC 0x0b Day 1 - 04 - CypherGhost - Postal Experiments |
|
|
|---|
| Topic: Computer Security |
9:18 am EST, Dec 20, 2007 |
PhreakNIC 0x0b presentation from CypherGhost on the funny rules surrounding what you can and can't ship via the USPS, as well as why some things take longer than others.
I've also been meaning to watch this. I hear he mailed a sphere. :) I think I can take 45 minutes this morning.... PhreakNIC 0x0b Day 1 - 04 - CypherGhost - Postal Experiments |
|
Friedman Writes Back » China and the Arabian Peninsula as Market Stabilizers |
|
|
|---|
| Topic: Business |
12:08 am EST, Dec 20, 2007 |
It is the only explanation for what we are seeing. The markets should be selling off like crazy, given the financial problems. They are not. They keep bouncing back, no matter how hard they are driven down. That money is not coming from the financial institutions and hedge funds that got ripped on mortgages. But it is coming from somewhere. We think that somewhere is the land of $90-per-barrel crude and really cheap toys. Many people will see this as a tilt in global power. When others must invest in the United States, however, they are not the ones with the power; the United States is. To us, it looks far more like the Chinese and Arabs are trapped in a financial system that leaves them few options but to recycle their dollars into the United States. They wind up holding dollars — or currencies linked to dollars — and then can speculate by leaving, or they can play it safe by staying. In our view, these two sources of cash are the reason global markets are stable. Energy prices might fall (indeed, all commodities are inherently cyclic, and oil is no exception), and the amount of free cash flow in the Arabian Peninsula might drop, but there still will be surplus dollars in China as long as it is an export-based economy. Put another way, the international system is producing aggregate return on capital distributed in peculiar ways. Given the size of the U.S. economy and the dynamics of the dollar, much of that money will flow back into the United States. The United States can have its financial crisis. Global forces appear to be stabilizing it. The Chinese and the Arabs are not in the U.S. markets because they like the United States. They don’t. They are locked in. Regardless of the rumors of major shifts, it is hard to see how shifts could occur. It is the irony of the moment that China and the Arabian Peninsula, neither of them particularly fond of the United States, are trapped into stabilizing the United States. And, so far, they are doing a fine job.
Friedman Writes Back » China and the Arabian Peninsula as Market Stabilizers |
|
The Volokh Conspiracy - Unconstitutional Rewards: |
|
|
|---|
| Topic: Politics and Law |
12:35 pm EST, Dec 19, 2007 |
Motorists may be in for a surprise if they spot flashing red lights in their rearview mirrors in this Sacramento suburb [Rancho Cordova] during the holiday season. Police are stopping law-abiding motorists and rewarding their good driving with $5 Starbucks gift cards.
This has been making the rounds for the past few days. The legal minds seem to agree that this isn't just a stupid idea, its unconstitutional. The Volokh Conspiracy - Unconstitutional Rewards: |
|
