To view the web site, visitors use special programs called browsers. Today the number of such programs runs into tens, especially considering that each of them has several versions different in functionality.
For that reason the notion of cross-browser compatibility was developed. It describes the property of the site to be identically displayed in all browsers (usually only the most common ones are considered). Here, identity is understood as correct layout and the ability to display content with the same readability degree. This concept is often confused with per-pixel matching, but that is actually not the same. More →
As a rule, to solve problems of the server you need to know what happened to it before. Here, monitoring systems come to the rescue. Today there is a wide range of useful monitoring systems (and Nagios is regarded to be the most popular one). Among them Munin should be marked out.
Munin is convenient and easy-to-configure tool of server performance monitoring. It has a large number of useful plug-ins available right away after installing. Its extensible functionality allows to monitor virtually every server characteristic: load average, network, CPU loading, memory usage, postfix, exim4, mysql and many more. More →
CSS preprocessor is software that processes its input data and produces output applicative to another program input. This software was created with the sole purpose of adding a CSS style sheet strength and flexibility at once without disrupting cross-browser. All preprocessors compile their syntax in standard CSS code understandable to any browser, no matter how old it is.
Preprocessors have many useful features and in this article we are going to examine some of them.
- The syntax is very important part of CSS coding; luckily, the most popular programs like Sass and LESS have standard CSS syntax. This makes the task of code converting simple and fast. More →
Although Dropbox is extremely user-friendly, many companies do not use it for security reasons. As a result, Dropbox analogies operating within an enterprise network start to appear on the market. One of them is Seafile.
More precisely, Seafile is a Dropbox-like cloud data store that allows users to store their data on cloud servers and share information with other users on the Internet. In addition to the basic functions of remote server storage and data synchronization, Seafile provides flexible opportunities for content sharing and collaboration. Let’s examine Seafile advantages in detail. More →
On the fourteenth of October, 2014, a dangerous vulnerability of SSLv3 encryption protocol called POODLE (Padding Oracle On Downgraded Legacy Encryption) was detected. It allows a cracker to get the information encoded by this version of the protocol using man-in-the-middle attack. To be more precise, this bug is a possibility of Padding Oracle attack that allows an attacker to send their data to the server via SSLv3 in the name of the victim and decrypt 1 byte per 256 requests.
Theoretically, the attack can be implemented on any service that supports SSLv3 protocol. Moreover, the attacker can intentionally force the client to connect via SSLv3 More →
Unfortunately, Heartbleed OpenSSL vulnerability found in April 2014 proved to be non-trivial and extremely common. Moreover, many users still have some question concerning this bug. Since the problem is still relevant, it is necessary to clear it up. Let’s ask the most important questions and try to give them simple truthful answers.
How actually dangerous Heartbleed bug is? Bruce Schneier, a recognized cryptography expert, said that it is 11 points on a scale of 1 to 10. More →
Today e-commerce is attracting a growing number of people. Due to the Internet popularity, developing companies can safely withstand competition with larger and more successful ones. Selling goods online gives you the opportunity to minimize costs, expand into new markets, and attract more consumers.
But first it is necessary to supply the process of site development. Of course, this task is directly linked with software. Magento e-commerce system is one of the best boxed solutions in such a case. Magento is a completely free open source CMS specifically designed for online store development and support. Nowadays it is one of the most popular e-commerce engines in the world due to its flexible functions, namely: More →
Shellshock (or Bashdoor) is a series of software vulnerabilities found in GNU Bash in September, 2014. The level of danger currently assigned to this vulnerability by NVD is ‘10 of 10’; moreover, it needs no authentication to use Bash through CGI scripts. Vulnerability affects all Bash versions of nearly 25 years (including 4.3). Alas, the vulnerability can be preserved in the future versions. Let’s clarify the essence of the bug.
The main danger is the ability to arbitrarily set the environment variables in the bash shell. The problem appears when the bash shell continues to process commands after the function definition, so it allows to perform code injection attack. Thus, at the moment bash interpreter processes some code line any command can be executed. In the context of the Web, it can be done through such mechanism as CGI script (not necessarily via a request header). Keep in mind that the path and query string can also be a potential attack vector. More →
Docker is an open source platform that automates the process of deployment by creating application containers that can be launched on absolutely any system (regardless of the language the application is written in). This platform brings together the Docker Engine container runtime, tools for creating packages and API. There are also repositories containing environment instances to run popular applications (MySQL, Nginx, Redis, etc..). Docker is written in Go and licensed under Apache 2.0. It comes complete with a full set of documentation and guarantees API backward compatibility. More →
CakePHP is a free open source PHP framework for rapid web-application development that provides you with all necessary tools making your application logical. In such a way it releases you from monotonous work in website development. Instead of re-inventing the wheel each time you create a site you can just make a CakePHP copy with the new project-specific settings.
Generally, experienced users identify the following advantages: More →