February 2004 - Posts
I found this:
Benefits of Windows "Continuous Reinvention"
The Windows "continuous reinvention" strategy is intended to provide a simpler and more integrated computing experience for all users while maintaining compatibility with existing hardware and software, as well as providing customers with continued innovation through evolution. End users will experience easy-to-use connectivity to all types of information; corporations will continue to have a manageable, flexible environment with which to meet changing business conditions; and developers will have a rich and extensible environment while retaining a choice of languages and tools.
If you think that this is an excerpt from a PD03 keynote, you're pretty wrong ;-) This is taken from a Press Release back in 1997! The idea of innovation in the Windows platform wasn't born with Longhorn. It's nice to see that for some years, many efforts and research have been done to provide users a richer experience, and delivering always improved tools and platforms. I hope I'm still here in ten years to see what the Windows platform has become.
According to a study by WebCohort, only 10% of the web applications are secured. Pretty scary. (Well, remember that Webcohort is a security company that sells security consulting. This conclusion serves their interests :))
These conclusions are also true for all platforms, all development languages and technologies. The interesting thing in this is that the vulnerabilities that they have discovered are not in the HTTP server "X" nor in the operating system "Y" but in the developer's code! These applications include e-commerce, online banking, enterprise collaboration, and supply chain management sites - not really your sister's homepage...
Most Common Application Layer Vulnerabilities (Source: Webcohort)
| Attack |
Percent vulnerable |
| Cross-site scripting |
80% |
| SQL injection |
62% |
| Parameter tampering |
60% |
| Cookie poisoning |
37% |
| Database server |
33% |
| Web Server |
23% |
| Buffer overflow |
19% |
Funny... I think that some people should be educated to this. They should care more about how trained are their developers on security rather than complaining about the supposed weaknesses of Microsoft's products.
</RANT>
Well, it was a long and busy day for this first day at "Solutions Linux 2004" in Paris. We've been giving hundreeds of SFU 3.5 CD-Roms to the visitors, and it looks like this product that is now available for free will have a great success. Some people prefer to use its NFS features rather than using Samba, and some other ones regret that Cygwin isn't supported anymore. The new SFU 3.5 "For Free Edition" comes at the right time ;-) The demos we showed were generally wel appreciated. Jason would have been happy to see this.
I'll tell more in a couple of days when the show is over. May be I'll post some pictures too. We've had some moment of pure fun with the guys from FreeBSD, and some other visitors. There was also some more "animated" and "live" conversations, but no one was hurt ;-)
Well, the new Mono release was just released ;-)) The first consequence is that the version 0.29 that I installed last Friday to show at the "Solutions Linux" exhibition is already outdated. Too bad :-((
In the Release Notes, you will notice that Mono's ASP.NET can now run a patched version of dasBlog. Btw, MonoDevelop, an adapted version of SharpDevelop - an Open Source IDE written in C# which I helped localizing in French before joining Microsoft - is expected to be released on Feb. 27th. This post explains why sharpDevelop has to be adapted to Mono, and the "why" of MonoDevelop.
There's been two .Text blog engines created lately. The first one was opened by the guys from Labo Dotnet - the .NET labs of the Computer Science School "Supinfo" - and the other one by Nicolas Sorel and his crew from the CodeS-SourceS network and the Developer-Association. There was also a couple of independant blogs here and there like Renaud Comte's - Renaud has just been nominated MVP and with Erol, they're part of the team who authored a 800+ pages book about Sharepoint SPS and WSS.
You can now find all these blogs aggregated in one feed, using an early alpha version of MonoLogue from Project Mono. Thanks to Vlad and to the guys from Mono :-)
Some famous French seem to be missing, like Fabrice for instance. So, if you're a French Blogger and if you're not in the list, leave a pointer to your RSS feed in the comments here.
... time for me to open a French speaking Blog also ;-)
More Posts