|
e*******o
发帖数: 4654 | 2 mojolicious, Dancer 还有个 Catalyst。
还有的直接上Plack。
Plack的作者就是个小日本。 framework的主要作者好像也都不是美国人,印象中都是
欧洲人。Perl 6 的参与者貌似也都在欧洲。
Perl 在美国算是快被忘掉了,招perl的主要是老公司,10年以上的那种。
CGI还真有,我看过Bugzilla的代码,还真是CGI。 |
|
m*****u
发帖数: 1342 | 3 SourceSafe (comes with Visual Studio). Not as powerful as SVN, git, but does
the job.
Besides JIRA, mantis and bugzilla are also ok. |
|
p***o
发帖数: 1252 | 4 【 以下文字转载自 PDA 讨论区 】
发信人: zjn (严禁灌水), 信区: PDA
标 题: 来个学术贴具体分析一下heartbleed的原理.
发信站: BBS 未名空间站 (Fri Apr 11 01:24:17 2014, 美东)
heartbleed的fix在这里:
https://bugzilla.redhat.com/attachment.cgi?id=883475&action=diff#a/ssl/d1_
both.c_sec1
问题出在直接拿了进来的数据包里面的两个字节作为后面memcpy的长度, 如果一个恶意
的数据包里给个64K作为长度而实际的数据包长度小于64KB, openssl就会把这个数据包
之后的内存内容拷贝发回.
由于用来存数据包的内存是动态分配的, 一般heap实现会将近似大小的动态分配内存放
在一个大的segment中,hacker应当可以读取64KB的和恶意数据包大小近似的动态分配内
存内容. 通过控制数据包长度, 加上知道重要的数据结构的大小, 应当有可能得到非常
重要的内容. 这确实是个十分严重的bug.
十分怀疑这程序员是故意的,这... 阅读全帖 |
|
t*****n
发帖数: 4908 | 5 来自主题: Programming版 - Jira 用过,不算差。也不复杂。觉得和bugzilla差不多。 |
|
|
z****e
发帖数: 54598 | 7 java的开源你自己拆包,然后重新打包就是了
然后提交一个bug到bugzilla或者jira给他们
如果你还有心,在github上开一个branch
然后修改后commit,记得要写unit test
再然后就等他们merge了 |
|
i*t
发帖数: 2 | 8 Security Research Engineer(2)
Description of Function and Responsibilities:
1. Vulnerability Research , Knowledge of Vulnerability and Exploit
2. Application Layer Network Protocol Parsing Engine Development
3. Signature Writing for Protocol Analysis based IPS
Build Engineer
Description of Function and Responsibilities:
1. . Understand and Have experience with version control and defect
tracking tools (cvs, bugzilla)
2. . Understand and Have experience with script programming, esp |
|
|
c****e
发帖数: 1453 | 10 发信人: ayanami (螃蟹@FROSTSHOCK PWNS YOU!!11!), 信区: Linux
标 题: A 7 years bug!
发信站: BBS 未名空间站 (Fri Sep 5 19:53:04 2008)
https://bugzilla.mozilla.org/show_bug.cgi?id=86607
Geez fucking christ.
I am full of despise for Mozilla developers now! |
|
c****n
发帖数: 21367 | 11 well... from a security researchers' point of view
averagely, 1 out of 158 system vul. is found by report,
rests are found by incidents.
come to this case, bugzilla list might count for 10% of FF's
KNOWN bugs with very optimistic estimation
for the FF's development group, I had contacted to them right
after 1.0 released about some code flaws. they are generally
arrogant and aggressive RTFM type people back to that time.
maybe they are tech elites, but they lack of any sense what
is the value of |
|
g*****g
发帖数: 34805 | 12 It's funny you argue all day and cannot find a link in bugzilla to
prove your point: FF can't get a critical memory leak bug fixed in
years. All your argument is I hear this, I think that. I don't give
a damn. You have the easy proof there and you take the detour,
so much about zealot. Unless you find the link, this conversation
is over.
s
setup. Repro is even harder.Memory leak in FF has been around at least 2-3
years before it's getting better, that's not a quick fix. Fixing a bug could
be ha |
|
x******g
发帖数: 3952 | 13 你为啥总一口咬定bugzilla里没有的就不是bug呢?
人民群众不是一整天都在给你讲这个不对么?就是不理解?
could |
|
|
g*****g
发帖数: 34805 | 15 A critical memory leak that's not fixed in years is not logged
in bugzilla? Are you retarded? There are tons of bugs logged
even for 1K memory leak, why not this "CRITICAL" one? |
|
g*****g
发帖数: 34805 | 16 If IE sets up a public bugzilla, what you found probably would be reproduced
in millions of others. If you don't bark, you bet others will.
Now if IE is also open source, 1 out of 1000 users may try to trace down the
problem. 1 out of those 10 may eventually find the problem and even attempt
to fix it.
This is how this system works. A critical bug may not be easy to fix, but
there's no way it won't be reported when it has millions of users and has
been released for several months.
it
know |
|
b******a
发帖数: 215 | 17 【 以下文字转载自 shopping 讨论区 】
发信人: bugzilla (report a bug to me), 信区: shopping
标 题: 靠,office 2007的序列号找不到了,怎么办?
发信站: BBS 未名空间站 (Sat Nov 15 14:21:20 2008), 转信
只有原盘了。 |
|
r**i
发帖数: 1222 | 18 公司outlook经常收到不少svn和bugzilla的信,
想将它们分门别类,按照邮件帐号分类到不同文件夹。
如何设置?谢谢 |
|
w**********k
发帖数: 1135 | 19 I'm working on it.
Our source code server will be up very soon, we
will set up CVS and BugZilla on it.
Then, we can start the first step, kill bugs one by one.
We need some experienced software engineers to attend us,
but, I have to say at the start there will be some restrictions. |
|
c***t
发帖数: 212 | 20 关于ACC auth 问题,
1. Some em7455 modems come with the comm ports closed and all are in mbim
mode. And some have fcc-auth turned on. If fcc-auth is turned on, you have
to issue a command to turn the modem on. You have to change the usbcomp mode
to turn on the com ports. I ran across some post on the net on how to do
these but haven't done it myself. They used AT commands to do it.
My dell em7455 came with all the ports open and fcc-auth turned off.
Also the em7455 has a different pid/vid usb identif... 阅读全帖 |
|
m*********k
发帖数: 10521 | 21 ID:
aoyun
usphd
tuantuan007
samanthapi
franklinll
smallant
Revolution
aoyun
rest
seamus
pkuwestlion
ellen1982
rmflyer
svmy
maodaren
bonalove
APRIL83412
faintcat
shifting
zhaoruirui
bugzilla
foilmm
butterpecan
JunkFood
signin13
passer1
jnsong23
JSIS
lydlan
rest
braveheart01
zhouna0323
capellini
illini1931
houvan
letti
SEM
bmbbbh
cocoli
版面:
ChinaNews2 2
WorldNews 2
Family 2
Movie
Family
History
Returnee 3
Love
Chemistry
Law
ChuanYu
Wisdom
astrology
Fashion
Prose
PhotoForum
Hardware
SanFrancisco 2 |
|
