royleban | Shared With: Everyone - 20 days ago | android, programming, sdk
Setting up an Android device for development
- royleban | Shared With: Everyone - Jan 25 2009 | programming, lisp, businesses
Paper on Lisp machine manufacturer Symbolics (a friend of mine was a founder).
- royleban | Shared With: Everyone - Jan 25 2009 | lisp, lambda, eval, programming, closures
Paul Graham's "Revenge of the Nerds" talk on Lisp. Read this years ago and just ran across it again.
- royleban | Shared With: Everyone - Nov 26 2008 | programming, framework, open source, social networking
Quoted: Pinax is an open-source collection of integrated, but reusable apps for the Django Web Framework.
By integrating numerous reusable Django apps to take care of the things that many sites have in common, it lets you focus on what makes your site different.
- royleban | Shared With: Everyone - Sep 21 2008 | python, development, programming
Interesting looking IDE for Python
Quoted: Wingware Python IDE - The Intelligent Development Environment for Python Programmers
- royleban | Shared With: Everyone - Aug 14 2008 | python, programming, style
Refaved from Mike
Well thought out consistent rules for formatting your Python code.
- royleban | Shared With: Everyone - Jul 08 2007 | javascript, libraries, programming, DHTML, databases
Redotting from Mike. Looks interesting.
jQuery is another general purpose javascript library. It has a rich set of selectors available for DOM elements (hence, the name jQuery), but also has Ajax support and HTML effects.
- royleban | Shared With: Everyone - Jun 29 2007 | programming, ocr, character recognition, scanning
Quoted: The Tesseract OCR engine was one of the top 3 engines in the 1995 UNLV Accuracy test. Since then it has had little work done on it, but it is probably one of the most accurate open source OCR engines available. The source code will read a binary, grey or color image and output text. A tiff reader is built in that will read uncompressed TIFF images, or libtiff can be added to read compressed images.
- royleban | Shared With: Everyone - Apr 23 2007 | javascript, programming, security, web development, ajax, json
Redotting from Mike Koss (good find)
Good reference to a paper on cross-site scripting vulnerabilites is AJAX code.
http://www.fortifysoftware.com/servlet/downloads/public/JavaScript_Hijacking.pdf
The attack using a hook to capture any event that sets a know property:
function Object()
{
this.email setter = captureObject;
}Note the flame-war between antibozo and kentaromiura in the comments. It actually resolves itself quite amicably in the end.
Quoted: An application can be mashup-friendly or it can be secure, but it cannot be both.
...
Solutions:
o Include a hard-to-guess identifier, such as the session identifier, as part of each request
that will return JavaScript. This defeats cross-site request forgery attacks by allowing the
server to validate the origin of the request.
o Include characters in the response that prevent it from being successfully handed off to a
JavaScript interpreter without modification. This prevents an attacker from using a
<script> tag to witness the execution of the JavaScript.Vulnerable frameworks include: Prototype, Script.aculo.us, Dojo, Moo.fx, jQuery, Yahoo! UI, and MochiKit.
- royleban | Shared With: Everyone - Mar 16 2007 | programming, css, javascript
Some nice tools for javascript/css explorations
Related Content from Around Faves
programming
-
Programming in LOL
1 FaverViewed: 2 Times - mike - 9 days ago10 FaversViewed: 3 Times
- mike - Jan 09 20091 FaverViewed: 16 Times
javascript
-
Drop Down Menu Tutorial.
4 FaversViewed: 39 TimesQuoted: Studies show that top navigations tend to get the most visual attention when a user first visits a site. Having organized and intuitive navigation is key -- and
- mike - Aug 05 20091 FaverViewed: 29 Times
- neko-zou - May 30 20072 FaversViewed: 42 Times
