xero

im a web application developer (php, c#, asp.net, mysql, mssql, js, etc, etc) personally, im chrome all the way. but since i do web work, i need to test my sites in all the browsers i possibly can. i like chrome for a few reasons, 1.) fast. like lightning fast. open time, load time (progressive rendering), etc. 2.) lightweight. there's just not much "fluf" to chrome. keeps it so quick. 3.) super simple plugin system. unlike ff, which nags you to death every time you launch it. 4.) extension system is ridiculously simple to code. i bet middle school kids could write them. i find myself writing a quick extension to simplify my life all the time. 5.) built in flash player. (screw you apple, i like FLASH!!!) in all honesty, i was a ff user for a long time. but since the release of 3 (or maybe 2.5x) it seems to get consistently worse, not better with each update. IMHO. use what you like.

people spend years of their life developing crypto algorithms. so dont reinvent the wheel if you dont *have* to. that being said, im a huge fan of blowfish, xtea, and serpent256. (depending on how encrypted you want/need things to be) all three of these algos are open source, and have been ported to multiple platforms already.

i see your using open GL ES 1.0. droid supports 1.0, 1.1, and 2.0 from what i have read you want to use 1.1 or 2.0 1.0 is a legacy thing now (i guess) here's some info on 2.0 http://developer.android.com/resources/tutorials/opengl/opengl-es20.html i know this probally isnt the solution your looking for, but perhaps it will put you on the right track. hope that helps!

hello, sorry to necrobump this thread. but i just got a used fon2100 and it has: dd-wrt v24-sp2 firmware installed on it. i want to flash jaseger onto it and have some fun ;D do i need to downgrade to the old fon firmware 0.7.1 r1 or can i just go from dd-wrt? using these instructions (should i be using these?) http://forums.hak5.org/index.php?showtopic=9908 what step should i start at? step 11? or should i try some of the others first? thanx a lot in advance.

if your using linux ruby (on rails) is probably a good place to start. https://help.ubuntu.com/community/RubyOnRails

yeah, that's a really complex question. and it's kinda specific to what lang your using. but say, in php, there are lots of ways to go about it. you could have a .php file with a mix of html and php <html> <body> <p> today's is: <?php echo date('l jS \of F Y h:i:s A'); ?> </p> </body> </html> or you could use a templating system that loaded vanilla html files and processes them with php (usually replacing strings with php variables at run time). javascript is a common "front end" language, but with the advent of node.js you can use it as a backend lang as well! in asp.net (this is just one example) you have two files for ever "page" (e.g. home.aspx + home.aspx.cs) the aspx file is basically HTML, js, css, etc. but aspx.cs is a c# (c sharp) file that has the "code behind" the other file. it can use the other file as a template if desired. but like i said, that's just one example. some people like to mash both those two files into one in .NET, and that's cool. coding is about personal style (to a point). it's good to have standards, and best practices (if they are from learned experience not just "company policy").

i'll just leave this here... http://www.ethicalhacker.net/content/view/165/2/#keygenintro

this book: AI for Game Developers By David M Bourg, Glenn Seemann http://shop.oreilly.com/product/9780596005559.do was quite a good read. just promise your not going to code skynet ;D

dive into some code... http://github.com http://phpclasses.org http://jsclasses.org http://peepcode.com http://lynda.com OR READ A BOOK! i really cant speak highly enough about http://oreilly.com/. "they" have taught me more about programming than any other entity.

if your willing to pay... http://www.lynda.com/ https://peepcode.com/ are both great resources. or if your just hungry for code... http://github.com/ http://www.phpclasses.org/ http://www.jsclasses.org/ im currently trying to "master" regular expressions http://regex.learncodethehardway.org/book/ this has been pretty awesome.

if you want to do some reading on the topic... i really enjoyed this book: SQL injection attacks and defense by justin clarke. and this blog: web security with chris shiflett. if your looking for tools i highly recomend... sql ninja and sqlmap

you can set your UA to whatever you like. use the defaults like ff, chrome, ie... or potentially use it to leverage an attack vector.

windows uses \r\n and linux is \n but for simplicity's sake, just use the php constant PHP_EOL (since 4.3.10 and 5.0.2) cite the server decides what the correct line ending is for it's environment and uses it. enjoy!

check out http://sectools.org/ i personally test my own apps with w3af http://w3af.sourceforge.net/ it's a RIDICULOUS tool. works with http/https, live session/header modifications, and a plugin system with a huge library of addons. hope that helps.

i also need to stress testing/checking the contents of your vars before using them! do not trust anything that comes from a user. take a look at the php filter var command http://php.net/manual/en/function.filter-var.php for me i like to know what vars are clean an what's potentially tainted. so i create an array called 'clean' and i put my test vars in that. here's a *REALLY BASIC* example of that workflow... <html> <head><title>var cleaning test</title></head> <style type="text/css"> body { background: #000; color: #fff; } h3 { color: #ff0000; } .row { display: block; padding: 2px; clear: both; } .row .lbl { display: block; float: left; width: 150px; height: 25px; padding: 2px; margin-right: 2px; } .row .inputs { display: block; float: left; width: 200px; min-height: 25px; height: auto; padding: 2px; } </style> <body> <h1>form cleaning test</h1> <form method="POST" action="http://<?php echo $_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; ?>"> <div class="row"> <div class="lbl">string</div> <div class="inputs"> <input type="text" name="txtString" value="" /> </div> </div> <div class="row"> <div class="lbl">email</div> <div class="inputs"> <input type="text" name="txtEmail" value="" /> </div> </div> <div class="row"> <div class="lbl">url</div> <div class="inputs"> <input type="text" name="txtUrl" value="" /> </div> </div> <div class="row"> <div class="lbl">number</div> <div class="inputs"> <input type="text" name="txtNumber" value="" /> </div> </div> <div class="row"> <div class="lbl"></div> <div class="inputs"> <input type="submit" name="btnTest" value=" test " /> </div> </div> </form> <br/><br/> <?php //---if post is sent if($_POST) { //---create vars $error = ''; $clean = array(); //---test our variables if(filter_var($_POST['txtString'], FILTER_SANITIZE_STRING)) { $clean['txtString'] = filter_var($_POST['txtString'], FILTER_SANITIZE_STRING); //---or perhaps use FILTER_SANITIZE_SPECIAL_CHARS } else { $error .= '<h3>txtString value is not a string</h3>'; } if(filter_var($_POST['txtEmail'], FILTER_VALIDATE_EMAIL)) { $clean['txtEmail'] = filter_var($_POST['txtEmail'], FILTER_SANITIZE_EMAIL); } else { $error .= '<h3>txtEmail value is not a valid email address</h3>'; } if(filter_var($_POST['txtUrl'], FILTER_VALIDATE_URL)) { $clean['txtUrl'] = filter_var($_POST['txtUrl'], FILTER_SANITIZE_URL); } else { $error .= '<h3>txtUrl value is not a valid url</h3>'; } if(filter_var($_POST['txtNumber'], FILTER_VALIDATE_INT)) { $clean['txtNumber'] = filter_var($_POST['txtNumber'], FILTER_VALIDATE_INT); } else { $error .= '<h3>txtNumber value is not a number</h3>'; } //---display results if($error == '') { echo 'everything looks good!<pre>'.print_r($clean, true).'</pre>'; } else { echo $error; } } ?> </body> </html> gotta give credit on this one... chris shiflett is my php security guru. check out his awesome blog for lots more security related info. (kinda cross platform)