Articles

Affichage des articles du février, 2012

Simple Workflow Service - Amazon Adding One Enterprise Brick At Time

Image
Yesterday, Amazon announced a new orchestration service called Simple Workflow Service . I would encourage you to read the announcement on Werner's blog  where he explains the need, rationale, and architecture. The people I spoke to had mixed reactions. One set of people described this as a great idea and were excited that the developers can now focus on writing domain-specific code as opposed to writing plumbing code to orchestrate their actual code. The other set of people felt that this service creates a new cloud lock-in making it difficult for the developers to switch from one cloud to another as well as being able to interoperate at the orchestration level. I believe this is a brilliant idea for a variety of reasons. Orchestration has always been painful. Ask the developers who have been involved in managing task execution across a cluster that required them to code for load balancing, handling exceptions, restarting hung processes, tracking progress etc. This is not a core c...

Blind SQL Injection Tutorial !!!!!

Blind injection is a little more complicated the classic injection but it can be done :D  It's some what hard but good to Learn  1) http://www.site.com/news.php?id=5 when we execute this, we see some page and articles on that page, pictures etc... then when we want to test it for blind sql injection attack 2) http://www.site.com/news.php?id=5 and 1=1 and the page loads normally, that's ok.now the real test 3) http://www.site.com/news.php?id=5 and 1=2 so if some text, picture or some content is missing on returned page then that site is vulrnable to blind sql injection.Hacker's Work Started :)  1) Get the MySQL version to get the version in blind attack we use substring  i.e http://www.site.com/news.php?id=5 and substring(@@version,1,1)=4 this should return TRUE if the version of MySQL is 4.replace 4 with 5, and if query return TRUE then the version is 5.  i.e http://www.site.com/news.php?id=5 and substring(@@version,1,1)=5 2) Test if subselect works  when select don't w...

Wrong Side Of The IT Ecosystem

Image
I find it ridiculous that people are blaming Apple for job creation in China  as opposed to in the US. People are also debating how US might in-source some of these manufacturing jobs to compete with China who has sophisticated manufacturing abilities and large skilled labor force supporting these operations. They are all missing the point. This is a wrong debate. The US lost manufacturing jobs to other countries a long time ago. I find it amusing that people expect the high-tech companies such as Apple to create manufacturing jobs in the US. If Apple were to even consider this option we would not have seen the tremendous success of Apple as a company and its products. What Apple created is an ecosystem of people and companies that are doing amazing things with their platform and their devices. It's a different kind of ecosystem and America should focus on that innovation as opposed to bringing those manufacturing jobs back. On one side we are whining about the loss of manufacturin...

Jill T. Singer, NRO CIO, Named One of 10 Top Women in Cloud Computing !!

Image
CONGRATULATIONS to National Reconnaissance Office (NRO) CIO Jill T. Singer for being selected as one  of the 10 winners of the first annual CloudNOW awards presented at the Cloud Connect Conference in Sata Clara, California earlier this week. From the NRO Press Release : "Considered one of the top women leaders in Federal IT, Ms. Singer was recognized for her innovative and inspirational leadership in the area of Cloud Computing. She is known not only for her presentations and writings on technologies and business changes needed for technological success, but her ability to mentor and grow the next generation of IT leaders to deliver long-term, sustained success." Over the years I have personally admired Ms. Singer for her GovCloud leadership. This admiration comes from having the pleasure to work directly with her on " the QUAD " and the subsequent Intelligence Community Common Operating Environment (IC COE).  Her ability to understand and communicate the complexi...