The 2009 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most significant programming errors that can lead to serious software vulnerabilities. They occur frequently, are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over the software, steal data, or prevent the software from working at all.
The list is the result of collaboration between the SANS Institute, MITRE, and many top software security experts in the US and Europe. It leverages experiences in the development of the SANS Top 20 attack vectors (http://www.sans.org/top20/) and MITRE’s Common Weakness Enumeration (CWE) (http://cwe.mitre.org/). MITRE maintains the CWE web site, with the support of the US Department of Homeland Security’s National Cyber Security Division, presenting detailed descriptions of the top 25 programming errors along with authoritative guidance for mitigating and avoiding them. The CWE site also contains data on more than 700 additional programming errors, design errors, and architecture errors that can lead to exploitable vulnerabilities.
The main goal for the Top 25 list is to stop vulnerabilities at the source by educating programmers on how to eliminate all-too-common mistakes before software is even shipped. The list will be a tool for education and awareness that will help programmers to prevent the kinds of vulnerabilities that plague the software industry. Software consumers could use the same list to help them to ask for more secure software. Finally, software managers and CIOs can use the Top 25 list as a measuring stick of progress in their efforts to secure their software.
You can find the top 25 here:
2009 CWE/SANS Top 25 Most Dangerous Programming Errors [pdf]
Network Solutions LLC registreert sinds kort domeinnamen die je op hun website hebt gezocht en nog vrij waren en niet direct bestelt. Dus zonder een aankoop te hebben gedaan, worden die domeinnamen geregistreerd en de komende 4 dagen vastgehouden, waarin de domeinnaam voor $35 kan worden gekocht. Na 4 dagen komt het domein weer vrij volgens Network Solutions.Te gek voor woorden natuurlijk.
Lees meer: Waar kan je tegenwoordig nog veilig zoeken naar domeinnamen?
An amazing gigapixel panorama of the inauguration that you can zoom in and control like it’s a google map.
[via]
Cattle that are named and treated with a “more personal touch” can increase milk yields by up to 500 pints a year.
Somebody had to do it. Who, after all, hasn’t wondered how many credit card applications arrive in their mailbox in a year?
Gary Silbar of Highland Park decided to find out and has saved 445 applications to show for it, including a hefty 35 addressed to his kids, Max, 8, and Jake, 11.
Read full article: here
In tijden van dreigende massaontslagen zijn de beste werknemers het eerste weg. Zij hebben de beste contacten elders en zijn slim en actief genoeg om het zinkende schip te verlaten, voordat ze gedwongen werkloos worden.
Volkskrant: Talenten stappen als eerste op bij baanonzekerheid
A new study in the journal Social Science Quarterly examined the relationship between first name popularity in adolescents and tendency to commit crime. Results show that, regardless of race, juveniles with unpopular names are more likely to engage in criminal activity.
Science Blog:
Adolescents with Unpopular Names More Prone to Committing Crime
A landmark settlement today at the High Court in Dublin between big-four music labels Warner, Sony BMG, EMI and Universal and internet provider Eircom will give the labels the firepower they need to curb music piracy.
Eircom has agreed to implement a ‘three strikes and you’re out’ policy against illegal peer-to-peer (P2P) downloaders, while also agreeing to work with data provided by the big four labels to help them pinpoint and pursue illegal downloaders and uploaders.
SiliconRepublic:
Big four music labels and Eircom in landmark piracy settlement
Older article:
Record Companies take legal action against Irish ISP: Objective – Music Piracy Filtering
On December 3, 1967 the World’s first human to human heart transplant was performed at the renowned Groote Schuur Hospital in Cape Town. The operation was considered a succes and a medical milestone. The man who performed this feat of pioneering surgery and led the world into an era of sopisticated medical advances was Christiaan Barnard, the surgeon who dared. (tourist leaflet)
I knew that Christiaan Barnard, from the familie-tree Barnard (we lost the “h” apparently somewhere in france a couple of ages ago) lived in South-Africa, but still by coincidence I happen to pass his memorial museum in Cape Town. I decided to have a look.
(more…)
