I noticed this report though: https://github.com/github/gitscm-next/issues/45
Yes, quite a few, as that thread shows.
How about the fact that his Insecure-by-default section contains only items that aren't actually PHP defaults. Or at least hasn't been defaults for a very long time for some of them. register_globals hasn't been enabled…
Liquidating domain names? I'm really surprised that the comments here are so supportive of domain name squatting. This is a sleezy business done by sleezy people. Even worse than the SEO garbage we see. If you are not…
This isn't that out of the ordinary, is it? We all turn down advances like this all the time. The battle for talent is rather heated these days, so being picky and avoiding litigious dick-move companies like Sony…
A little bit of all this PR work should have been redirected to fixing the simple XSS holes in their product.
Reading other things on this kid's site. Wow, douche-in-training.
1. get_class_methods() and get_defined_functions 2. gearman and other mechanisms are much better options for running out-of-band stuff than launching a separate thread from a web request.
Nothing is ever really secure. Yes, non-technical Starbucks users are easy targets, but so are most web sites. The last couple of "Review my startup/app" HN posts have all had very obvious XSS holes, for example, and…
XSS holes everywhere.
You might want to read up on what XSS is.
Note that the Google Maps API have very similar terms. Most people ignore those terms, of course, but technically you need to pay Google at least $10,000/year to use their Maps API for any sort of commercial project.
How many times are you idiots going to post this same old story?
Yup, Gearman does this very well and it definitely isn't complicated.
The bigger problem is that a svn update isn't atomic, so you are going to be in an inconsistent state for a while. Capistrano with its atomic symlink switch is a much better approach although you have to watch out for…
No they haven't. The only one that is dropping is Perl: http://www.ohloh.net/languages/compare?measure=commits&p...
A quick traceroute would tell you that they don't. He probably meant the source ip range for restricting access changed due to the office move.
seiji, an open ssh port also isn't that big a deal. Every large network has an ssh entry point somewhere. I did a quick check before and at least it only accepted ssh-2. But yes, I agree with you that having that entry…
PayPal has a group payment product - https://www.paypal-collect-money.com/?adtrack=2 If that is not the same in any way, shape or form, then you have a really odd view of the world.
APC works very well with nginx/php-fpm. I have been running it in production for quite a while. Rock-solid.
"Error establishing a database connection" I'm pretty sure your UPS didn't cause your database problem. Perhaps your UPS isn't the only lame thing here.
He explained that, because he doesn't like the idea of dumbing down reading. There are plenty of startups that should fail out there.
Uh no. PHP in 1995 was very much in C. Go look at the (now famous) Usenet announcement.
https://www.wepay.com perhaps? I see a recurring bills feature there.
yawn
I noticed this report though: https://github.com/github/gitscm-next/issues/45
Yes, quite a few, as that thread shows.
How about the fact that his Insecure-by-default section contains only items that aren't actually PHP defaults. Or at least hasn't been defaults for a very long time for some of them. register_globals hasn't been enabled…
Liquidating domain names? I'm really surprised that the comments here are so supportive of domain name squatting. This is a sleezy business done by sleezy people. Even worse than the SEO garbage we see. If you are not…
This isn't that out of the ordinary, is it? We all turn down advances like this all the time. The battle for talent is rather heated these days, so being picky and avoiding litigious dick-move companies like Sony…
A little bit of all this PR work should have been redirected to fixing the simple XSS holes in their product.
Reading other things on this kid's site. Wow, douche-in-training.
1. get_class_methods() and get_defined_functions 2. gearman and other mechanisms are much better options for running out-of-band stuff than launching a separate thread from a web request.
Nothing is ever really secure. Yes, non-technical Starbucks users are easy targets, but so are most web sites. The last couple of "Review my startup/app" HN posts have all had very obvious XSS holes, for example, and…
XSS holes everywhere.
You might want to read up on what XSS is.
Note that the Google Maps API have very similar terms. Most people ignore those terms, of course, but technically you need to pay Google at least $10,000/year to use their Maps API for any sort of commercial project.
How many times are you idiots going to post this same old story?
Yup, Gearman does this very well and it definitely isn't complicated.
The bigger problem is that a svn update isn't atomic, so you are going to be in an inconsistent state for a while. Capistrano with its atomic symlink switch is a much better approach although you have to watch out for…
No they haven't. The only one that is dropping is Perl: http://www.ohloh.net/languages/compare?measure=commits&p...
A quick traceroute would tell you that they don't. He probably meant the source ip range for restricting access changed due to the office move.
seiji, an open ssh port also isn't that big a deal. Every large network has an ssh entry point somewhere. I did a quick check before and at least it only accepted ssh-2. But yes, I agree with you that having that entry…
PayPal has a group payment product - https://www.paypal-collect-money.com/?adtrack=2 If that is not the same in any way, shape or form, then you have a really odd view of the world.
APC works very well with nginx/php-fpm. I have been running it in production for quite a while. Rock-solid.
"Error establishing a database connection" I'm pretty sure your UPS didn't cause your database problem. Perhaps your UPS isn't the only lame thing here.
He explained that, because he doesn't like the idea of dumbing down reading. There are plenty of startups that should fail out there.
Uh no. PHP in 1995 was very much in C. Go look at the (now famous) Usenet announcement.
https://www.wepay.com perhaps? I see a recurring bills feature there.
yawn