Finally an updated development version of cyrus2courier is available. It currently features support for Cyrus v2.2+ setups and also Dovecot keywords. Please give it a try and provide feedback.
Recently in programming Category
Well, actually its wednesday now ... but i still found some interesting Ruby links while broswing the web: Closures in Ruby, Plugins for your Ruby Application, Ruby Network Programming, The Little Book of Ruby and a bunch of Ruby One-liners
Popularized through its use in a number of well-known Web application services, AJAX
provides Web developers with a way of expanding the value and function
of their Web applications by using asynchronous XML messaging. This article
shows you how to implement a Web browser-based SOAP Web services client
using the Asynchronous JavaScript and XML (AJAX) design pattern. Oh,
and while you're at it, be sure to check out AJAX Security as well.
Joel tells us about The law of leaky abstractions. Which means that whenever somebody comes up with a wizzy new code-generation tool that is supposed to make us all ever-so-efficient, people say: "learn how to do it manually first". Code generation tools which pretend to abstract out something, like all abstractions, leak, and the only way to deal with the leaks is to understand how the abstractions work and what they are abstracting away.
Paul Graham has posted a new article to his website: "The Python Paradox". It refines the statements he made in "Great Hackers" about Python programmers being better hackers than Java programmers. Very Interesting read.
Imperva(tm)'s Application Defense Center (ADC) has released a new white paper titled How Safe is it Out There
(Zeroing in on the
vulnerabilities of application security). The paper, written by Moran
Surf and Amichai Shulman, presents a statistical analysis of results
obtained from numerous application level penetration tests performed
for various customers over the years 2000 - 2003.
As seen on the Web Application Security Mailinglist, Jeff Williams has posted a collection of regular expressions
for validating data input in webapps. Input validation shouldn't just
be left to 'best practice' or whatever individual developers want to
do. It takes some real design thinking to get it right for an
enterprise application.
An interesting essay about 'Programming as if Performance Mattered', by James Hague, mentioned at the Lambda the Ultimate programming languages weblog. This is the first modern and sensible spin on how optimization has changed over the years. It is an attempt to look at things from a different point of view, to put performance into perspective.
A thought-provoking article on ONLamp.com, lists eight "myths" that Open Source developers tell themselves. For example - Myth: Publicly releasing open source code will attract flurries of patches and new contributors. Reality: You'll be lucky to hear from people merely using your code, much less those interested in modifying it."
Many documents discuss the actual insertion of HTML into a vulnerable
script, but stop short of explaining the full ramifications of what can
be done with a successful XSS attack. This Paper found on net-security.org explores the possibilities of cross site scripting attacks.
