glasn0st - Slashdot User

Submission + - OWASP ModSecurity Core Rule Set v3.0 released

Submitted by dune73 on Thursday November 10, 2016 @04:26PM

dune73 writes: The OWASP ModSecurity Core Rule Set v3.0.0 release is now available. The OWASP CRS is a widely used Open Source set of generic rules designed to protect users against threats like the OWASP Top 10. The rule set is most often deployed in conjunction with an existing Web Application Firewall (WAF) like ModSecurity. Four years into the making, this release comes with dozens of new features including: reduced false positives (by over 90% in the default setup), improved detection of SQLi, XSS, RCE and PHP injections, the introduction of a Paranoia Mode which allows to assign a certain security level to a site, and better documentation that takes the pain out of ModSecurity. We are so excited about this, we want to make it into movie. In fact, we have already started the project with a poster.

Submission + - Subversion project migrates to Git (apache.org)

Submitted by gitficionado on Tuesday April 01, 2014 @08:23AM

gitficionado writes: The Apache Subversion project has begun migrating its source code from the ASF Subversion repo to git. Last week, the Subversion PMC (project management committee) voted to to migrate, and the migration has already begun.

Although there was strong opposition to the move from the older and more conservative SVN devs, and reportedly a lot of grumbling and ranting when the vote was tallied, a member of the PMC (who asked to remain anonymous) told the author that "this [migration] will finally let us get rid of the current broken design to a decentralized source control model [and we'll get] merge and rename done right after all this time."

Comment They're horrible! (Score 1) 843

by glasn0st on Monday August 03, 2009 @06:56PM (#28934281) Attached to: 20 Years of MS Word and Why It Should Die a Swift Death

These PDF tax returns might look cool, but can cause a lot of headache.

The Dutch tax service experimented with them, a few years back. I could only do my personal income returns through one of these dynamic PDFs. The results:

1. All the different "pages" in the PDF were no actual pages, you had to navigate them using on-page scripted buttons and the PDF would dynamically overwrite a "page" into the content. Result: you couldn't PRINT the document! You would only get the first page! To workaround this, you could use a report generating button built into it, but its output did not match the screen layouts and it required data validation, so you couldn't easily copy inputs or send half-filled-in stuff to the accountant for review.

2. The PDF document seemed to append anything you did to itself. If you worked with it for a long time, it grew and grew. Even if you only corrected previous input it would grow in size. At some point Adobe Reader would take minutes on open or handle a keypress. I had to start over with my tax returns once, which was a pain because of (1).

3. When a new version of Adobe Reader came out, ALL THE OLD PDF'S WERE UNOPENABLE! Apparently, some scripting inside the document could not run anymore. All that was left was the static front page of the document. Very nice if you want to fill in a new return with your old stuff as a template. I wouldn't have cared to open this garbage if I could have printed it, but nooooo!

This stuff was the worst of the worst. And all while solving a non-problem. Arguably some of these issues were caused by a bad implementation, but some of them (the new Adobe not opening them) are fundamental. I never want to touch any scripted PDF again. Fortunately our tax service abandoned them next year. I cried tears of joy.

Submission + - Sun Releasing 8-Core Niagara 2 Processor

Submitted by Anonymous Coward on Thursday August 02, 2007 @10:11PM

An anonymous reader writes: Sun Microsystems is set to announce its eight-core Niagara 2 processor next week. Each core supports eight threads, so the chip handles 64 simultaneous threads, making it the centerpiece of Sun's "Throughput Computing" effort. Along with having more cores than the quads from Intel and AMD, the Niagara 2 have dual, on-chip 10G Ethernet ports with crytopgraphic capability. Sun doesn't get much processor press, because the chips are used only in its own CoolThreads servers, but Niagara 2 will probably be the fastest processor out there when its released, other than perhaps the also little-known 4-GHz IBM Power 6.

Slashdot Top Deals