http://blog.brunoduarte.com There is nothing so powerful as an idea whose time has come. Yes, even if it’s a bad idea. John McCarthy (1971 Turing Award) Thu, 03 Sep 2009 20:37:31 +0000 http://backend.userland.com/rss092 en The 2009 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most significant programming errors that can lead to serious software vulnerabilities. They occur frequently, are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over ... http://blog.brunoduarte.com/top-25-most-dangerous-programming-errors/ ..Yes. WPA was finally broken! More information can be found here. http://blog.brunoduarte.com/practical-attacks-against-wep-and-wpa/ Since its release a few weeks ago, curious developers have been sniffing through the source code for Google's new Chrome web browser. Chrome's source is interesting for a variety of reasons: there's the new V8 JavaScript virtual machine with its boasts of near-native code performance, the WebKit rendering engine that ... http://blog.brunoduarte.com/google-chrome-antics-did-google-reverse-engineer-windows/ First was the Crypto-1 cipher (used in stuff like the Oyster card), then the DNS flaws and now will be the Intel CPUs bug... http://blog.brunoduarte.com/happy-security-experts/ "Teens use technology to party in strangers' pools. [...] Google Earth’s used to identify pool-equipped victims and then Facebook helps organise the crash..." In: RegHardware http://blog.brunoduarte.com/if-you-dont-have-a-pool-google-earth-helps-you-find-the-nearest-one/ ... Second Edition! Maybe because he promised it in the last three JavaOnes, there isn't a big buzz about the Effective Java Second Edition book... We have an official release date! You can pre-order yours now... http://blog.brunoduarte.com/effective-java/ While most IP-based communications technologies could use security improvements, Codenomicon's chief technology officer Ari Takanen thinks that VOIP should be higher on the list than most. Takanen spends much of his time finding ways to break the security on such networks and finds that it's really way too easy. As ... http://blog.brunoduarte.com/breaking-voip-security-is-really-easy/ Rob Lybarger, from developer.com did an updated to some articles about Java Code Style. Worth the reading here. http://blog.brunoduarte.com/java-code-style/ "Contrary to popular assumption, DRAMs used in most modern computers retain their contents for seconds to minutes after power is lost, even at operating temperatures and even if removed from a motherboard. Although DRAMs become less reliable when they are not refreshed, they are not immediately erased, and their contents ... http://blog.brunoduarte.com/security-isnt-always-about-software/ In this panel discussion from QCon San Francisco, several influential leaders of the software development community discussed and debated the future of the Java language and APIs based upon the lessons we have learned from the past. Topics included static versus dynamic languages, removing code from Java, forking the JVM, ... http://blog.brunoduarte.com/what-will-the-future-of-java-development-be/