|
Java was the most targeted development platform for exploit attacks during the first half of the year, and attacks have increasingly shifted to zero-day vulnerabilities, according to F-Secure's new threat report. I'm shocked. SHOCKED!
|
|
|
|
|
Quote: "Of the top five most targeted vulnerabilities, four are found in the Java development, either the Runtime Environment (JRE) or the browser plug-in,
Would it be too much to give a breakdown between PRF and plugin exploit levels? I, and AFAIK a lot of other people, were of the opinion that all that was really needed was to boot the plug in. THis is implying otherwise so I'd really like more information on it.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
So Java is one of the most common languages in corporate web solutions, especially when you add in the JVM based non-Java technologies, and it is one of the most targeted points for hackers. Shocking isn't it!
This, I fear, is the same story as Window targeted viruses, of course there's more as there are more targets to exploit. It is nothing to do with the technology, but everything to do with the ubiquity.
speramus in juniperus
|
|
|
|
|
I don't think it's just as simple as ubiquitous== most hacked. Well, most targeted, yes (so I suppose I really agree with you).
However, as Weven showed, if they can't find the holes, they'll move on. If Java (and PHP) weren't vulnerable, they might not be as targeted. The other example would be browsers, which used to be heavily targeted, and with the better security seemed to be less so now.
--------------
TTFN - Kent
|
|
|
|
|
I agree there are vulnerabilities, but it does not make Java bad; just alternatively moralised.
speramus in juniperus
|
|
|
|
|
Nobody thinks iOS software is worth more than a few dollars, if even that much. It’s “just” a little app on a phone. In a world of 99c apps, the free app is king
|
|
|
|
|
The introduction of fake zooms, parallax, sliding and other changes in Apple's new iPhone and iPad software has a very real effect on people with vestibular disorders Beyond the usual reasons
|
|
|
|
|
For .NET 4.5 we aren’t seeing the same kind attitude towards adoption. After an informal poll the overwhelming reason for staying on .NET 4.0 was Windows XP and Windows Server 2003. Though these decade old products are effectively at end-of-life, many companies are reluctant to leave them. Mr. CEO. Tear down that XP, let my people upgrade
|
|
|
|
|
The Myth of the Rockstar Programmer is just that, a myth. It's an unfortunate myth for a number of reasons. "In ancient times, hundreds of years before the dawn of history, an ancient race of people..."
|
|
|
|
|
I would be classed as a Rockstar programmer except I'm absolutely no good at Guitar Hero III!
- I would love to change the world, but they won’t give me the source code.
|
|
|
|
|
From what I remember, the term "rockstar programmer" originally meant someone who was really good at programming and also really good at understanding the business side of Silicon Valley startups, so that they ended up being extremely productive quickly when time really mattered.
It's normal for programmers who understand a business to be significantly more productive than programmers who don't understand the business they are working in. However, it's a temporary situation; other programmers improve their business knowledge (and technical skills) over time, so the productivity gap narrows.
I think the "rockstar programmer" concept is more of a crutch idea for business people who don't take the time or energy to understand real issues in software development. It's a useful concept in some situations, and it's a good counterbalance to other oversimplified concepts (that assume all engineers are equally productive), but it's not quite degraded so far that it's a "myth".
|
|
|
|
|
It was 30 years ago today -- which is to say Sept. 27, 1983 -- that the seeds were planted for both Linux and the open source software movement, though neither is called that name by the man who help set both of them into motion, the irascible Richard Stallman. What's GNU with you?
|
|
|
|
|
Apple's iOS 7 is plagued with HTML5 defects related to the Web SQL database, home-screen widgets, gestures, and animations. Maximiliano Firtman, an HTML5 developer and author of several popular Web programming books, revealed several of these bugs. And Michael Mullany, CEO of Web development environment vendor Sencha, both confirmed Firtman's findings and found more problems in Apple's HTML5 execution. But they're Apple bugs, bugs are cool now
|
|
|
|
|
Apple has a lot of issues. It seems they copied Windows 8 for their new UI, but Windows 8 doesn't have as many bugs as iOS does. A to Microsoft for actually not having as many bugs, and a to Apple for not debugging iOS 7 or fixing reported bugs.
Keep Clam And Proofread
--
√(-1) 23 ∑ π...
And it was delicious.
|
|
|
|
|
I don't see that they copied Windows 8 - the only similarity might be in the use of a superlight sans serif font everywhere. They certainly missed out on creating some of the better features of Windows 8 if they were targeting it (live tiles being the main one IMO). I think they just tried to change the UI too much, too fast for the number of heads they had working on it. I heard rumours that they were pulling people off other projects just to remove the skeuomorphism from some of the apps.
--------------
TTFN - Kent
|
|
|
|
|
Microsoft is building another Office Windows 8-style application. Sources familiar with Microsoft's Office plans have revealed to The Verge that the app, codenamed Office Reader, is designed to be a cross format tool for consuming different types of content. During yesterday's employee-only company meeting, Microsoft's Kirk Koenigsbauer demonstrated the tool alongside a number of updates coming to Office in what he described as the "Gemini" wave. It allows opening Web pages and Office documents! I've been waiting for something like that!
The Lens app sounds pretty cool though. I know a lot of people that just photograph the whiteboard after a meeting, having it converted to text might be useful (assuming better hand writing recognition than I've ever seen).
|
|
|
|
|
When groups of developers come together to talk about the state of OSS in .NET, the comparisons were traditionally drawn with Ruby; more recently Node.js has also become a focus for analogy. Both those ecosystems are almost entirely open-source, with lots of healthy competition and innovation, and a genuine sense that if somebody builds a better mousetrap, people will switch to it. “Why isn’t the .NET world more like that?” people ask, and they talk about whether it’s Microsoft’s fault and what they could do to help. What I rarely hear mentioned is the humungous elephant in the room: Visual Studio. Yet another opinion on the matter
|
|
|
|
|
Kent Sharkey wrote: “Why isn’t the .NET world more like that?” people ask Ask those people why they think the .NET world should be more like that.
Kent Sharkey wrote: Both those ecosystems are almost entirely open-source, with lots of healthy competition and innovation Aaah, that's implying that one needs to be "open source" in order to have innovation and/or competition.
Kent Sharkey wrote: What I rarely hear mentioned is the humungous elephant in the room: Visual Studio. Aight, granted, no competition there
TL, DR:
Ruby, Node, etc. are text-based; text-based is easier to extend.
.NET is Visual Studio-based; Visual Studio is harder to extend. No, Visual Studio is just the most used IDE, despite the open-source "competitors".
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
Microsoft chief Steve Ballmer may be on his way out soon, but he's not leaving without taking a few more swipes at Apple, Amazon, and Google. I'm going to miss the big guy (Na-na na nah, hey, hey hey...)
|
|
|
|
|
Thousands of employees filed into Seattle’s Key Arena today for Microsoft CEO Steve Ballmer’s final company meeting. Reports out of the meeting are not official, but we have a pretty good idea of the main announcements made during Ballmer’s last hurrah. New dance moves were not on the agenda
|
|
|
|
|
I found myself scratching my head at the details on the preview of Ruby 2.1 for a minute. I don’t know what most of the items are! So let’s dig into them and dive into some of the details. Coming soon: less garbage collection! (And more)
|
|
|
|
|
Google updates some search features that expand on its ability to answer your questions directly. "In time you will come to regard me not only with respect and awe, but with love."
|
|
|
|
|
Kent Sharkey wrote: "In time you will come to regard me not only with respect and awe, but with
love."
+5 for "Colossus: The Forbin Project" reference!
modified 30-Sep-13 20:16pm.
|
|
|
|
|
WebKit long has been the dominant open source Web-rendering engine, but with Google’s Blink fork, its future has turned murky. The Web Blinks, and we're back to browser wars.
|
|
|
|
|
Microsoft today launched BrowserSwarm, an open source tool to help Web developers automate testing of their JavaScript frameworks and libraries across devices and browsers. To take advantage, all you have to do is sign up for free here. If you're going to use JavaScript, might as well be sure it works
|
|
|
|