Radrik - Slashdot User

Submission + - Apache Fixes Range Header Flaw--Again (threatpost.com)

Submitted by Trailrunner7 on Wednesday September 14, 2011 @01:11PM

Trailrunner7 writes: Two weeks after releasing a fix for the range-header denial-of-service flaw that was much-discussed on security forums and mailing lists, the Apache Software Foundation has pushed out another version of its popular Web server that includes a further fix for the same flaw.

Apache 2.2.21 has a patch for the CVE-2011-3192 vulnerability that the group previously fixed in late August with the release of version 2.2.20. The vulnerability is an old one that recently resurfaced after a researcher published an advisory on a modified version of the bug and also released a tool capable of exploiting the vulnerability.

Submission + - App Inventor Reborn at MIT (appinventorblog.com)

Submitted by Anonymous Coward on Tuesday August 16, 2011 @04:24PM

An anonymous reader writes: MIT announced the launch of the new Center for Mobile Learning, with a first activity being to take over and refine App Inventor for Android. The center will be led by App Inventor mastermind Hal Abelson, Mitch Resnick of Lego Mindstorms and Scratch fame, and Eric Klopfer, the director of teacher education at MIT and an expert in games and simulation. Here'(TM)s an excerpt from the announcement:

"Dr. Maggie Johnson, Google’s Director of Education and University Relations, sees the Media Lab initiative as the ideal next step for App Inventor. “Google incubated App Inventor to the point where it gained critical mass. MIT’s involvement will both amplify the impact of App Inventor and enrich the research around it,” said Johnson. “It is a perfect example of how industry and academia can work together effectively."

This news boomerangs the negativity surrounding Google’s discontinuation announcement last week. To the many teachers whose curriculums have been energized by App inventor, and to the thousands of newly empowered app builders: Rejoice! The fun has just begun!

Submission + - A Linux Kernel More Stable Than -stable (itworld.com)

Submitted by

jfruhlinger

on Tuesday August 16, 2011 @04:17PM

jfruhlinger writes: ""-stable" is the term for the current Linux release most suitable for general use; but as Linux moves into more and more niches, there's a need for a kernel more stable than -stable, which is updated fairly regularly. Both enterprise and embedded systems in particular need a longer horizon of kernel stability, which prompted Greg Kroah-Hartman, then at SUSE, to establish a -longterm kernel, which will remain stable for up to two years. Now there are moves to get this schedule formalized — moves that are a good sign of Linux's long-term health."

Submission + - Ask Slashdot: Verifying Security of a Hosted Site

Submitted by edi_guy on Thursday June 02, 2011 @04:58PM

edi_guy writes: I'm getting ready to launch a small commercial website that will contain customer information in a MySQL database that will be run by a web-hosting service. While I have good experience with SQL databases from a programming point of view, I'm not an expert on securing them. Given all of the publicity around break-ins and data theft on a seemingly daily basis, it seems prudent to review this now rather than later.

What are suggestions on resources that would help verify that both myself and my hosting service are following best practices on securing a database backed website?

Slashdot Top Deals