A massive google result scanning for “404 object not found” has been recorded between 23/12 to 25/12. It’s indicated a massive attack will happen in these few days with respect to those pages (most probably target for specific web server).
The massive google result scanning are produced by infected computers in different country with keywords “<head><title>404 Not Found” or “<html><head><title>404 Not Found”
Posted in Uncategorized | Tagged 404 vulnerability, google result scanning | Leave a Comment »
I've just received a press release from Packt about the latest jQuery Campaign. Here is the press release: Packt celebrates jQuery in October with exclusive book offer Packt has this week announced a series of discounts and promotions to herald the publication of the Learning jQuery, Third Edition in October. Packt will offer readers the exclusive discounts of 20% and 30% off the cover price of all jQuery print books, including the just published third edition of the Learning jQuery book, for limited period only. jQuery is a powerful, yet easy-to-use JavaScript library that helps web developers and designers add dynamic, interactive elements to their sites, smoothing out browser inconsistencies and greatly reducing development time. Learning jQuery, Third Edition, written by Jonathan Chaffer, Karl Swedberg, is revised and updated for version 1.6 of jQuery. Readers will learn the basics of jQuery for adding interactions and animations to their pages. Even if previous attempts at writing JavaScript have left one baffled, this book will guide them past the pitfalls associated with AJAX, events, effects, and advanced JavaScript language features. “jQuery is one of the topics Packt remains committed to publishing on, offering more interesting books that will help the diverse needs of jQuery users. The set of jQuery related books we’ve recently published shows our continued commitment to the topic area, and we intend to publish important jQuery books, such as the Learning jQuery, Third Edition, for a long time to come”, said Packt Open Source publisher Doug Paterson. For more information on jQuery October and the discounts being offered throughout October, please visit: - https://www.packtpub.com/news/jquery-month
Posted in computer language | Tagged Doug Paterson, Jonathan Chaffer, jQuery, jQuery book, jQuery Campaign, Karl Swedberg, Learning jQuery, Packt, Packt jquery campaign | Leave a Comment »
From now on, we don’t say internet, we say cloud. “To cloud” means to put something into the internet. To cloud something into the cloud, somewhere, sometime, somehow by someone, things will be exposed. In contrast to the possibility of leaks, to cloud something into the cloud, it allows you to get this thing anytime, anywhere by any device in any situation. If you want to live easier, you should be smarter. You should be smart enough to put something into the cloud when nobody discovered its existence. On the contrary, if you want to live in the hard way, you should put everything into the cloud, letting everyone, every time and everywhere knowing what you’ve done and where you’ve been. However, the cloud is too big that your influence is too small to get yourself noticed by others.
If you can manage the cloud in the way that you can influence the cloud to get yourself being noticed by other or you can hide yourself in the cloud without a trace, you are the god/goddess of the cloud. Now, I’ll tell you, the god/goddess of the cloud is more influential than a leader of any country or empire.
It is now the age of cloud and the empire of cloud is growing bigger each day. You can be one of the citizens in the cloud, and you are free to choose: noticed by the cloud, hide inside the cloud. It is up to you if you are knowledge enough to do so. One day, you may be powerful enough to rule the cloud, my lord.
Wish the cloud is with you.
By Cloud-gen, guy from cloud-generation
Posted in Internet | Tagged Apple Cloud, Cloud, Cloud Computing, Cloud-gen, Google Cloud, internet | 3 Comments »
我兩個星期前,公司正在招聘軟件工程師。某一日,我遇見一位五十開外的應徵者。他對標準的面試問題對答如流,當問及其他問題時,他會用對答如流的標準答案。當問及他日常的喜好或個人想法時,也是對答如流的標準答案。基本上,他沒有真正答過我任何一個問題,因為,我希望從問題當中認識他,他的標準答案卻不能讓我認識他。他運用的標準答案,其實是知識上的垃圾。
我有一個朋友,是一個從事多年的英文考學的老師。她很自豪她當年會考的經濟科獲取到A級,她會告訴我如何運用不同的標準答案去應考。至於當年所背誦的標準答案,她已全忘記了,今天的她仍是個經濟白痴。她運用的標準答案,也是知識上的垃圾。
某國的總理,幾天前講話,義正言辭的說甚麼給公眾一個交代。幾年前的某處地震,過後幾多年都沒有好好交待,幾年前的某某嬰兒唯一的食物事件,都沒有好好交待,反而民間有人從提舊事就會入獄。這個國家的領導去糾正一個政府的機關運作,並不是考慮機關所發生的問題,而是政治上需不需要除去某此勢力。就如面試的情況一樣,等如沒有真正處理。他所發表的,也是管治上的垃圾。
不幸的是,我發覺自已也是垃圾的製造者。我寫了程式,在某某網頁內自動寫Blog,但全是對答如流的標準答案。我為公司建立了數十個網站,上載了近千萬個網頁,全是汚染搜尋器用的標準內容。然而,這些垃圾,本人給予一個名字為數位垃圾,卻是找搜器千方百計想讀取的資訊。
一個熱烘烘的股票市場,真正想參與集資及投資的參與者,極之少。早年曾聞說,每天的成交有六成來對自沖基金的炒賣。對原本股市誕生的目的集資的場所而言,是垃圾的交易。但這些垃圾的交易卻最能賺除市場中的金錢。就如網頁垃圾,最能賺除Page Rank。也是管治上的垃圾,最能獲得政治本錢。考試的垃圾標準答案,最能得分。面試的垃圾標準答案,最能獲取職位。垃圾已經進入了數位時代,作為社會的一分子,作為數位垃圾製造商,我會覺醒嗎?能造點東西嗎,難怪我不能仇痛所遇見的垃圾製造商,因為本人也是參與者。就如吾現也不能仇視垃圾豪宅製造商,因為吾身在視垃圾如寶的世界之中,吾心早已被蒙閉過來。要離開垃圾,唯朌早登極樂。
為香港引入高科技,就有如在垃圾知識經濟中,引入清泉。水喉開得不大,早晚會被染汚。別人說新加坡的科技比香港高,可能是因為沒處身在有那麼高增長的垃圾知識經濟之中。不過,我仍會為香港引入高科技,明知不可為而為,可能就是我的本命吧。
Posted in Uncategorized | Leave a Comment »
This is a test message from my iPod using a Chinese made blue tooth keybooad. I can typing fast now.
Posted in Uncategorized | Leave a Comment »
Using Application Scope Regular Expression 是一種使用IIS的冷知認。
在處理「搜尋器友善」(Search Engine Friendly)的網頁時,網頁瀏覽器每一次向服務器索取
網頁時,常常會利用「正規表達式」。其實,每次使用「正規表達式」時,服務器會重新將
「正規表達式」進行即時翻譯(Just-in-Time Compilation),當網頁傳送給瀏覽器後,「正規表達式」
就會從記憶體移除。
試想像一個繁忙的網站,同一時間有千多個客戶。每一個用戶會使用一個或以常的「正規表達式」,
而每次使用,都會從新「即時翻譯」。這些過程,對服務器是一個很大的負擔。
在微軟IIS上,有一個使用物件的方式,叫做Application Scope,表示物件在啟動後會一直運行,
直到IIS重新啟動、或者清理Application Pool時,才會從新載入、翻譯。我們可以將
「正規表達式」以Application Scope的方式,長期留在記憶體內。以下的情況,有四個常用的
「正規表達式」以Application Scope的方式運作的代碼(儲存在/global.asa):
<object runat="server" name="URL_RegExp" scope="application" progid="VBScript.RegExp"><object/object>
<object runat="server" name="NODE_RegExp" scope="application" progid="VBScript.RegExp"><object/object>
<object runat="server" name="SITEMAP_RegExp" scope="application" progid="VBScript.RegExp"><object/object>
<object runat="server" name="PART_RegExp" scope="application" progid="VBScript.RegExp"><object/object>
<script language="JScript" runat="server">
function Application_OnStart(){
Application.lock();
URL_RegExp.Pattern="404;http:\\/\\/[^\\/]+\\/(.+)$|^~404\\.asp$";
NODE_RegExp.Pattern="^node/([01][a-z0-9]{3})$";
SITEMAP_RegExp.Pattern="^sitemap/([01][a-z0-9]{3}|nodes)$";
PART_RegExp.Pattern="^parts/([01][a-z0-9]{3})/([0-9A-Z\\-\\.\\/\\%\\s]{4,50})$";
Application.unlock()
}
</script>
經過簡單比較,在繁忙的服務器上,用應用程式層面(Application Scope)會比(Session Scope)快十多倍。
Posted in computer language | Tagged Application Scope, Application Scope vs Session Scope, 「正規表達式」, global.asa, Regular Expression, Session Scope, 應用程式層面 | Leave a Comment »
常常在網上看過一些廣告,提省大家電腦不安全,要安裝他們的防毒軟件之類。 昨天,有位同時中了一種病毒(估計是病毒利用zero-day漏洞入侵), 會先將防毒軟件關上、將瀏覽器安全降低。然後下載另外一隻假的 電腦硬碟掃瞄的軟件,安裝並且執行。 它會告知你的電腦的硬碟有很大的損壞,要你用軟體修補之類,然後又會說 該軟體要更新或付款之類(我沒有測試,這是個推測) 我從逆向工程分析過軟件的基本運作,之後我又想看看它的模樣,所以, 我將它安裝在一個虛擬的電腦上。下面是運行時的抓圖, 老實說,它的用戶介面還真的不俗,如果真心是設計一個真的硬碟程式, 也很有可能有很多人願意付款。
Posted in Computer Science | Tagged computer virus, 硬碟掃瞄, Fake Fragmen, Fake Harddisk Scannertation Scanner, Fake Program | Leave a Comment »
最近有一位同事栛助我處理有關Search Engine Optimization(SEO)的事宜。
舊的系統產生了大量的網頁,我這位同事要建立新的系統。但舊的系統所
產生的網頁。有大量的ASP(Active Server Page)代碼,不應該直接移至新的系統中。
其中一個方法,他要使新的系統將所有ASP代碼移除。最有效的方法,就是
編寫合適的「正規表示式」Regular Expression,用「正規表示式」來表達及
辨識ASP代碼。
要辨識普通的ASP代碼,即以<%...%>所包裹的文字,可以用以下的「正規表示式」:
In order to recognize asp code inside a source code file,
we can use the following Regular Expression:
<%([\S\s](?!%>))+[\S\s]%>
要辨識附加檔案(Include file),即以<!--#Include File="..."%>或
<!--#Include Virtual="..."%>所包裹的文字,可以用以下的「正規表示式」:
In order to recognize asp include file tags inside a source code file,
we can use the following Regular Expression:
<\!\-\-\s*#([\S\s](?!\-\->))+[\S\s]\-\->
要辨識有內容的Server-side Javascript,即以<script language="JScript"
runat="server">...</script>等所包裹的文字,可以用以下的「正規表示式」:
To identify the server-side javascript, we can use
the following Regular Expression:
(<script runat|<script([^>](?!\brunat\b))+[\S\s]?runat)\s*=\s*"server"[^>]*>([\S\s](?!<\/script>))+[\S\s]<\/script>
如果將「正規表示式」利用JScript運行的話,我們要避免<script>的標籤
內藏有任何<script>的標籤,請參考以下的寫法:
If the regular expression is written in JScript, to avoid
nested-javascript (i.e. javascript tag inside javascript),
the Regular Expression should be written in a way similar
to following example:
<script language="JScript" runat="server">
//... some code here
var serverjs=new RegExp("(<"+"script runat|<"+"script([^>](?!\\brunat\\b))+[\\S\\s]?runat)\\s*=\\s*"server"[^>]*>([\\S\\s](?!<\\/"+"script>))+[\\S\\s]<\\/"+"script>","g")
//... some code here
</script>
Posted in computer language | Tagged Active Server Page, asp, ASP 代碼, Classic ASP, RegExp, Regular Expression, 正規表達式 | Leave a Comment »
昨天,有一位同事的電腦中了病毒。然而,經常用的防毒軟件沒法認出該病毒, 負責系統維護的同事只知道該電腦的Registry被病毒更改了而每次啟動都會執 行該病毒,卻不清楚病毒的名字及運作的模式。 為了了解狀況,我試圖將收集回來的三隻電腦病毒的樣本進行逆向翻譯。由於手 上沒有逆向翻譯的軟件,於是,我在Google搜尋這方面的軟件。結果給我發現一 個提供「不良軟件」進行逆向翻譯及分析的網站: Eureka (http://eureka.cyber-ta.org)。 以下是Eureka的主頁的抓圖:這個網站不但提供逆向翻譯,亦提供軟件的能力、運作流程的分析。透過這些工具,我可以了解病毒的運作模式,從而了解可能的感染途徑、預防方法、復原方法等等。 以下是其中兩個我在分析的「不良軟件」: 1. http://eureka.cyber-ta.org/OUTPUT/8049bd9048834aac8cd48491c90f4e65/ 2. http://eureka.cyber-ta.org/OUTPUT/73c4ae46e6dca0ae57d6becf25684260/ 其中一個分析「病毒更改Registry」的情況:
Posted in Computer Science | Tagged api analysis, computer virus, de-assembly, eureka, 逆向工程, flow analysis, Reverse engineering | Leave a Comment »
