Kommentaarid Tehnokratt! kohta

Targalt tehnoloogiaga – netikett, autoriõigused. | Haridustehnoloogia lasteasutuses kommentaar Autoriõiguse olulistest aspektidest Internetis kohta

Fri, 02 Sep 2016 16:46:56 +0000

[…] Autoriõigustest internetis […]

Martin Vahi kommentaar Tehnokrati identiteedist kohta

Martin Vahi — Sun, 20 Dec 2015 12:17:00 +0000

Ma saan aru, et tehnokratt Peeter Marvet on avalikkuse areenilt tagasi tõmbunud, ei mingit taskuhäälingut, ei mingeid uusi ajaveebipostitusi, jne. aga üks teema, mis üldrahvalikku “heietamist” väärib, on “tava-inimeste” harimine nende privaatsust kaitsvate tehnoloogiate alal. Ma pole mingi turvaspets, aga olen tarkvara-arenduse käigus, veebitarkvaraga seoses, pidanud toda teemat endale selge(maks) tegema, olles seoses Edward Snowden’i juthudega asjale rohkem tähelepanu pööranud kui ma seda ehk muidu teinud oleks. IT-huvilistele olen oma mõtteid kirja pannud oma enda “wiki-raamatusse” nimega bitrary, mis asub:

http://bitrary.softf1.com/

täpsemalt,

http://bitrary.softf1.com/index.php?title=Software_Development_:_Security

Võin “halli kardinalina”, jättes tehnokrati “kaanepoisi” rolli, aidata selle üldrahvaliku harimiskampaania temapunktide loetelu koostamisel, koos viidetega. Ma ei kavatse sellesse palju oma aega investeerida, aga arvan, et tänu tarkvara-arendus-alasele “vanale rasvale” suudan isegi selle vähese aja-investeeringu raames päris palju ära teha, s.t. muu töö käigus on juba väga suur töö nii kui nii, möödaminnes, ära tehtud, palju saab korduvkasutada. Korduvkasutada Tehnokrati küsimustele vastamisel, mitte üldrahvaliku ettekande ettevalmistamisel, s.t. üldrahvalik ettekanne jääb Tehnokrati teha. Esmase hõrgutisena pakun välja sellise lingi:

https://www.youtube.com/watch?v=KVSIyin4EZ8

P.S. Soovitan ka muid IntlSpyMuseum videosid vaadata, päris äge.

https://www.youtube.com/channel/UCJ-UEBNs3VfYGuMMaXg1NFw

Muuseas, IT-spetsile sobiva töövahendina on mul 2015_12 seisuga välja pakkuda ka VirtualBox’is jooksev virtuaalmasin, milles saab oma enda otsimootorit jooksutada.

http://technology.softf1.com/mmmv_raspbian_t1/mmmv_gigablast_container_t1/

Võibolla kui koostada mingi turva-teemasid käsitlevate lehekülgede URL’ide kogu, siis see võiks aidata tolle projekti raames turvateemadel silma peal hoida.

Lugemise eest tänades,
Martin.Vahi@softf1.com

petskratt kommentaar leaving old CMS hanging around is really stupid idea kohta

petskratt — Wed, 17 Sep 2014 05:21:00 +0000

Vastus Martin Vahi-le.

hmm, haven’t thought about “what GIT stores” – did some reading / testing and seems, that stored are compressed versions of full files, not diffs…

but yes, adding “web” changes a lot in “software development” – it becomes something anybody can “program using google”… meaning all more complex and less-scriptish approaches can’t be used as they require some level of understanding what you are doing :-)

Martin Vahi kommentaar leaving old CMS hanging around is really stupid idea kohta

Martin Vahi — Wed, 17 Sep 2014 04:23:00 +0000

If SQL-injection is possible in modern software that has thousands of installations and tens of developers, then that certainly shows that the developers of that software do a really shoddy job or they joined the project at stage, when the technical quality of the project was already ruined. As end users tend to assess products by functionality alone, not reliability, there is no business case for producing high quality software. Reliability in terms of withstanding crackers and otherwise attackers is the property that is called security and if elemental algorithmic complexities and memory usage related issues are overlooked in web applications, then one can just imagine, how hopeless it is that an "average" business-software developer spends any reasonable amount of time thinking about security issues. I hate to be that blunt, but the truth is that when I started to work on web software, I often swore in my mind by thinking, why is it that whenever the word "web" enters "software development", it essentially means "piece of shit". To top that all up, I tried to find a web based forum software that has at least style-wise well structured code and out of practically all major, more popular, forum applications that I found on GitHub, out of about 10 products, there was only one that did not have a gigantic main function and a general mess and that single one, to my disappointment, was written in C#, which I did not like, because the C# is a Microsoft product and Microsoft has a really bad reputation as a player. Anyways, what I do to mitigate website attack related issues is that I have a Bash script that creates a folder, year_month_day, places database dumps of all of my information systems into that folder. After executing the Bash script, I recursively copy everything, including the database dumps, from the web hosting account to a git repository at my personal computer. The git detects modifications between different back-up versions and makes it feasible to repeatedly back up the tens of Gibibytes of files that make up my site. The database dumps are actually text files that contain SQL-statements. The git can, probably, I haven't verified, detect the differences between the different backup versions of the database dumps and, hopefully, store only the changes. As the database dumps can be hundreds of Mebibytes large, the diff based approach of git comes very handy. Should someone break in, their changes will be in the same change set with non-malicious changes, but at least I can, hopefully, limit the amount of files and file regions that I have to analyze. Of course, You shouldn't use Windows for making the backups, because regardless of various "FinSpies" the Windows file system has always been a slow and unreliable crap, if compared to ext4, jfs, Raiserfs, etc. Again, end users are happy with functionality and technical quality is shoved down the drain.

Liisa Saare kommentaar Ketta defragmenteerimisest kohta

Liisa Saare — Sat, 28 Jun 2014 17:07:00 +0000

Kuidas teha seda win 7 puhul kui menüü on eestikeelne???!!!