Archives

Got a Ruby on Rails application running? Patch it NOW

A security issue has been discovered in Ruby on Rails, a popular web application framework. It is a serious one:

There are multiple weaknesses in the parameter parsing code for Ruby on Rails which allows attackers to bypass authentication systems, inject arbitrary SQL, inject and execute arbitrary code, or perform a DoS attack on a

…continue reading Got a Ruby on Rails application running? Patch it NOW

Hands on Cross-Platform Windows and Mac development with C++ Builder XE3

I have been writing about Embarcadero’s RAD Studio XE3, which includes Delphi and C++ Builder, and as part of the research I set this up for cross-platform development on a Mac.

My setup uses a Parallels Virtual Machine to run Windows 7, on which RAD Studio XE3 is installed. This is convenient for Mac

…continue reading Hands on Cross-Platform Windows and Mac development with C++ Builder XE3

Microsoft updates .NET Framework 4.5 for Windows 8, Server 2012 to fix performance, bugs

Microsoft has released an update for .NET Framework 4.5 which you may have noticed flying past if you keep an eye on Windows Update in Windows 8. The update is described here, and it is a big one. For example, in the Network Class Library:

Assume that you run a .NET Framework 4.5-based application that

…continue reading Microsoft updates .NET Framework 4.5 for Windows 8, Server 2012 to fix performance, bugs

Extraordinary: the FTC says it is OK for Google to bias search results in its own favour

The most remarkable statement in the report from the US Federal Trade Commission’s investigation of Google is this one:

The FTC concluded that the introduction of Universal Search, as well as additional changes made to Google’s search algorithms – even those that may have had the effect of harming individual competitors – could be plausibly

…continue reading Extraordinary: the FTC says it is OK for Google to bias search results in its own favour

Hacking Windows RT and Surface RT to run desktop apps

A developer on the XDA Developers forum, known as clrokr, has figured out how to run unsigned applications on Windows RT (Windows on ARM), including Microsoft’s own-brand Surface RT device.

The technique is described here and involves patching the Windows kernel. Currently it is not possible to jailbreak Windows RT completely, because Secure Boot prevents

…continue reading Hacking Windows RT and Surface RT to run desktop apps

Google the new Microsoft, goes to war on Windows Phone users (updated)

Google has fired a one – two – three salvo at Microsoft and Windows Phone users. Consider the following.

First, we learn that Google, under the guise of Winter cleaning, is removing Google Sync from its Mail, Calendar and Contacts online products, for consumers only. This is the Exchange ActiveSync protocol used by Windows Phone

…continue reading Google the new Microsoft, goes to war on Windows Phone users (updated)

Google fights Android fragmentation with new SDK terms

Google has revised the terms of the Android SDK license agreement so that users must now agree not to fragment Android by deriving other SDKs from Google’s official offering. In fact, you now have to agree not to fragment Android in any way as a condition of using the Android SDK.

The key clauses

…continue reading Google fights Android fragmentation with new SDK terms

Visual Studio LightSwitch HTML: mainly for mobile

Microsoft’s Visual Studio LightSwitch is an innovative development tool that lets you build multi-tier database applications without ever designing the user interface directly. Instead, you work with defining the database and the the features you want on your screens. LightSwitch generates the user interface for you. You can also add code snippets, and advanced developers

…continue reading Visual Studio LightSwitch HTML: mainly for mobile