neutrinos can.

Hi. As someone else mentioned in some German forum, it is probable that all orphaned projects on BerliOS will perish the day BerliOS is taken down for good. - Anyone here who could offer a full mirror of the data. Or would Archive.org be an option? zapyon

The creator of Rails has expressed regret for that video, because it gives people the impression that CRUD generation is the most important feature of RoR. 99% of the J2EE work I've seen doesn't require high-performance, low latency distributed messaging engines. That's the edge case that Rails doesn't and can't handle right now. If JRuby ever progresses, it will get that. (I wonder if we could bolt a messenger framework to a Rails app, open sockets maybe?) Speaking of edge cases, Hibernate still kicks ActiveRecord's ass. For those of us who live in that 99% of projects that don't require those edge cases (or can drop down to SQL when AR doesn't hold up), there's a lot of productivity and elegance to the Rails community's projects. Have you seen Migrations? Things like that are a delight to code with. In the same vein, check out the config for URL mapping if you've ever been frustrated by web.xml. Tag libs and filters, features I appreciated when going from PHP to Java in 2001 are more straightforward in Rails. In the Java world I was already convinced that Hibernate/Spring was the way to go, and wanted to avoid EJB's as much as I could. I've worked with them, and they're f&*()g messy, barely testable, slow abominations. In Rails, I've got all the features I wanted to deal with in J2EE... so far, no regrets. But speaking of edge cases and awesomeness... have you played at all with Ruby (not Rails)? There's been a few times I've done thing in Ruby I simply couldn't have in Java, thinking "Fuck, I always wondered why it was so complicated".

As many others have posted, the problem with 'secure' passwords is often that users will start noting them down and keeping them on their screen or in the drawers of their desk.

I have had good results with instructing 'reluctant' users to select an item in the room (or something on a picture on the wall next to the desk) as their password hint. An elderly secretary very uncomfortable with their computer and very forgetful when it came to passwords finally did well when I recommended her to use the name of a bird on a poster (in German). I think this is still a lot better than either a random password noted on a Post-It or the name of your late pet or 'secret' lover.

But, of course, this is totally insecure in a high security environment. So, eventually, we have to conclude that there is a strong relation between security requirements and user capabilities (and enthusiasm/reluctance). It is a 'social engineering' matter after all, isn't it?

Kind regards

zapyon