Seunthomas's Posts
Nairaland Forum › Seunthomas's Profile › Seunthomas's Posts
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 (of 36 pages)
This list does not do justice at all. From my own experience, amongst enterprise users(banks,telecom,etc), Java and .NET are still the most prominent languages. I dont even think they adopt stuff like nodejs. Startup and other new vertical companies can play around with nodejs,etc but enterprise users will always go for those stack that have been tested time and time again. |
@elfico is actually right on enum but i want to slightly differ on arrays. Arrays may not necesarily always store the same type. There are specialized arrays that can hold any value but they still follow basic rules guiding array datatype. |
Before i can give any advice, i would ask what your age is. And what you hope to achieve with programming. Where do you expect to be in a year,5 years,10 years,etc. See programming as a long-term investment, something you will be working on for many years to come. Most people start up wanting to make money within a year or 2. It took me close to 3 years to learn java and grasp it very well. I was coming from a c/c++ background and so enforcing objects was a totally different way of thinking. And i never made any money from programming until several years after starting. So don't be in a haste to be productive, learn and gather experience. |
Confirm that there is a mysql user with that username,password and that has access to host localhost on that server. The error is very descriptive enough. |
DanielTheGeek:I doubt you can, because sessions are passed to the http client. .htaccess wont have any effect. |
mnairaland:What snapchat did was to make it more difficult to hijack sessions. But like i stated first in my reply, there is no way to totally prevent it. |
I Will resume the lessons later tomorrow. Have a good weekend. |
mnairaland:To be honest with you, there is actually no way to prevent it. You can actually make it more difficult for sessions to be hijacked. One way is by allowing one user signup per device. If a user logs in from one device, you automatically sign them out from all other devices. You may need to add some headers in the request to act as a challenge. Thats what snapchat does. They log you out from all other devices and you have to generate a specific header which is a challenge between the server and client to verify if the requests has been tampered with. However, like i said, a determined attacker can still bypass this with some effort. |
Nmeri17:Well i made some contributions to python. I was amongst the first to start clamoring for the python windowing shell, pythonw. I also reported a few bugs to php mysql module. As for communities that am active on,I would say none. I contribute here and there from time to time. If no be say some people find my wahala, i spend too much time on NL recently. LOL. |
encryptjay:hahaha. Very unfunny. Why is it that most active contributors on this section are the one's that rarely write code?? Wetin una dey find self. You come register attendance. Very well we don see you.... |
Lesson 4 Never take anything for granted Most of the most humilating hacks that ever happened was because of developer carelessness. The BrowserStack of 2014,Snapchat hack of the same year were all as a result of someone being careless with credentials. Never keep important passwords,remote login details,cpanel details,ssh details,etc in places where they could be easily accessed. The most popular security vulnerability in the world is 'carelessness'. Develop a security consciousness and be very critical about credentials. From time to time change passwords etc. Some compromises may not be detected until you change your credentials. |
FincoApps:If you are using unity or godot most likely you are already doing native. Most game engines have a scripting interface. They come standard. Because you are scripting in a game engine does not mean you are working hybrid. |
FincoApps:Unity and Godot engine are written in c/c++ if am right. Its different from using an intermediary language like java or .net. If you remember the common logic, assembly is faster than c/c++. c/c++ is faster than java,.net and java,.net is faster than php. The case being that php is interpreted. If you are using godot/unity you have no problem. They are cross platform/cross build. Cross build means that they build on those platforms e.g Android,IOS,Windows,OSX/MacOS,Linux. I don't make it a habit of insulting people except am provoked. |
nnamokenna:@nnamokenna Create a new thread |
lekropasky:a. It really does not matter if you use a GET or POST in your request. Just ensure that you send the traffic over SSL/HTTPS (this is just a minor prevention that can not stop determined Man in the middle attacks). b. SSL certificate pinning is a good way to reduce the chances of your traffic being sniffed by a third party. It can however be bypassed without much work on most rooted devices. c. Some apps do check to see if the device is rooted. If the device is rooted they wont run. This is also a precaution and combined with SSL certificate pinning will prevent about 80% of attacks. d. Another way to mitigate attacks would be to use a shared key thats known to the server. Then encrypt all requests from the client going to the server. This is how most of the payment processors send credit card details. If on a mobile device, ensure the encryption part is done in c/c++ code. For android developers, never encrypt data in Java, always do it in c/c++. There are very good android apk to java decompilers that can convert all your code back to raw or approximate java code. Will continue Lesson 4 later today. |
Darangi007:Xamarin is the closest to native apps. It actually converts to assembly on ios and bundled the .net runtime on android. It however can not compete speed wise with truely native apps. The point is once you go cross platform, you must be ready for trade offs which in many cases include speed/performance issues. |
KvnqPrezo:We will wait in vain. I am going to bed but still waiting for him. |
FincoApps:I know you are a programmer. Except you have been lying... |
Did NL just censor me ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ![]() ?? |
FincoApps:Do you know i get angry with people like you?? Its because you dont know much and you are misinforming people. Thats why i get pissed and vexed........ Look who is call someone a retard. By all standards am not your mate when it comes to programming so please go and look in a mirror and make that statement. |
KvnqPrezo:He wont. He is just a coward that likes to make noise. Am still waiting for him. |
KvnqPrezo:Native apps use the official SDK from android or ios. Hybrid apps use the webview which is part of the official SDK. A webview is a browser. Most of the webviews are based upon webkit and some even have the v8 engine as their javascript engine. A hybrid app is just a web app thats running in an android app. The issue they have is the native-js bridge. Your first lesson you probably learn when comparing programming languages is that c is faster than java and assembly faster than c. This is true because with assembly you are already at the machine level. C is converted to binary but via assembly so its still a stage higher. Now java is first of all converted to another intermediary form(byte code) and byte code is then assemled. Within all this stages time is wasted although very small in most cases. Its the same with Hybrid apps. Hybrid apps talk with java in case of android or objective c in case of IOS via a bridge. The delay between the bridge causes lag in the apps and sometimes apps maybe very sluggish. |
FincoApps:Your mouth is sharper. And you dont know your level. |
KvnqPrezo:If you can afford to spend time and stress of learning native development, please go into native development straight away. |
FincoApps:You are the biggest rookie i have met. Mind you i contributed code to the original phonegap till it was moved to apache cordova. You cant make a performing hybrid app that would be half as good as a native app.(I stand to be corrected). Native apps can be optimized so much that they are near perfect. And the challenge with hybrid apps is that they will perform differently on different devices. Maybe you should try testing on devices with 1GB ram or less and comeback here and make the same statement. |
FincoApps:Well the rules are simple. You throw a challenge and then i throw one. Last man standing.... If you are ready we will create a new thread. |
FincoApps:Anything to bring down seunthomas right. sshhhhhhh. |
DanielTheGeek:Well most tech evangelist know their onions well. If you have ever taught anything, you will know that only the very fluent can teach a subject matter. By the way, i rarely use stackoverflow. I just go there sometimes to see solutions that people have already solved. But am not an active community member. |
FincoApps:You have a problem. Am not your problem. Go and seek medical/psychological help. And if you feel you are as good as i am then throw a challenge its as simple as that. If you wont then keep shut. My statement still stands. |
DanielTheGeek:Your competence will make you visible. Its actually 100% proven. I get more jobs based on referrals than when i go directly to clients to prospect. Most times its people who know you and what you can do that will get your jobs. |
Lesson 3: Logging is in your friend Although this is outside security concerns for an application. But Logging the interactions on your application and having it saved in a central repository can help you better understand and attack and prevent it in future. In most times large companies are hacked or their applications compromised, the first thing they do is to check the logs. From the logs, they can identify the attack as well as how they compromised their systems. In cases where there are no logs, such a company can not be able to prevent such and attack in the future. |
KvnqPrezo:Programming is a personal thing. If you want to be the next bad coder, you have to do more than they are going to teach you in school. My first language was QBasic and after that i learnt Fortran 77 and then C and VB and so on... You must learn as much as you can while you can still assimilate it. |
