• The Big Fat Thread of Knowledge™
    120 replies, posted
  • [B]The Big Fat Thread of Knowledge™[/B] The purpose of this thread is to act as a repository for various [B]interesting and insightful articles, papers, books, videos or vinyl records[/B] that may prove useful for web-designers and developers. This includes topics such as [B]design (user interface, graphic design, web-design, and all the other relatives), security, communication and marketing, documentation/specs/standarts, development, and all others you deem fit. [/B]To ensure a minimum level of quality, I'd appreciate it if we could follow these basic guidelines: [LIST] [*]Avoid 'Top 10 x' lists and the likes, avoid [B]generic tutorials for this or that[/B] ('make a css button in 53 steps', 'php upload script lolollo') [*]Try to look for [B]trusted and reputable[/B] sources. Badly written articles that teach terrible practices are the majority - let's try to keep them off this thread. [*]If you're linking to a book, try to post it's full name, author and release date. Cover pictures and Amazon links or similar are optional, personal reviews are [B]more than welcome[/B]. If you're posting academic papers or similar, the same applies. [*]Discussing the contributions is not only welcome, but really one of the most important aspects of this thread. Just try to be civil. If you disagree with someone, try to back your claims with sources. [/LIST] Finally, if you're up to it, original content would be great. Some content to get the ball rolling: [IMG]http://upload.wikimedia.org/wikipedia/en/thumb/f/f1/GEBcover.jpg/200px-GEBcover.jpg[/IMG] [URL="http://en.wikipedia.org/wiki/G%C3%B6del,_Escher,_Bach"]Gödel, Escher, Bach[/URL] by Douglas Hofstadter (1979) [quote]Gödel, Escher, Bach: An Eternal Golden Braid (commonly GEB) is a book by Douglas Hofstadter, described by the author as "a metaphorical fugue on minds and machines in the spirit of Lewis Carroll". On its surface, GEB examines logician Kurt Gödel, artist M. C. Escher and composer Johann Sebastian Bach, discussing common themes in their work and lives. At a deeper level, the book is a detailed and subtle exposition of concepts fundamental to mathematics, symmetry, and intelligence. Through illustration and analysis, the book discusses how self-reference and formal rules allow systems to acquire meaning despite being made of "meaningless" elements. It also discusses what it means to communicate, how knowledge can be represented and stored, the methods and limitations of symbolic representation, and even the fundamental notion of "meaning" itself.[/quote][IMG]http://www.softwarebloat.com/wp-content/uploads/2008/11/dont_make_me_think_2nd.png[/IMG] [URL="http://en.wikipedia.org/wiki/Don%27t_Make_Me_Think"]Don't Make Me Think[/URL] by Steve Krug (2005) [quote] A bit dated but still relevant, dicusses usability, user psychology and other basic but important concepts every budding webdesigner/developer should have a firm grasp on. [/quote][URL="http://projects.z-dev.org/hashing/"]Popular Hashing Algorithms - An Analysis of Practicality and Security Applications[/URL] by Matt Anderson (FP member andersonmat). [quote]Cryptographic hash functions also known as hashing algorithms are a deterministic procedure that takes an arbitrary amount of data and returns a fixed-size bit string. The returned value can be referred to as a cryptographic hash value. Hash functions work in such a way as that if there is an accidental or intentional change to the data, the change will be seen in the hash value. When hashing, the data provided is often referred to as the message, and the hash value is sometimes called the message digest or simply digest.[/quote] [URL="http://www.facepunch.com/threads/1028467-You.-Yes-you-stop-trying-to-validate-emails-like-that."]You. Yes, you - stop trying to validate email addresses like that.[/URL] by Filipe Dobreira (me, hihihihi) [quote] A quick and painless look at how you should be validating email addresses. (hint: you shouldn't) [/quote][URL="http://benlog.com/articles/2008/06/19/dont-hash-secrets/"]Don't Hash Secrets[/URL] by Ben Adida [quote]One area of secure protocol development that seems to consistently yield poor design choices is the use of hash functions. What I’m going to say is not 100% correct, but it is on the conservative side of correct, so if you follow the rule, you (probably) can’t go wrong. You might be considered overly paranoid, but as they say, just because you’re paranoid doesn’t mean they’re not after you.[/quote][URL="http://chargen.matasano.com/chargen/2007/9/7/enough-with-the-rainbow-tables-what-you-need-to-know-about-s.html"]Enough with the Rainbow Tables . What you need to know about Secure Password Schemes[/URL] by Thomas Ptacek [quote]The socialbookmarkosphere is abuzz with talk of “rainbow tables”, what they mean for password security, and why they prove that Microsoft did a shoddy job of securing Windows for Workgroups 15 years ago. This really freaks me out. If the “advanced” pole of your threat model is “rainbow tables”, stop working on your social shopping cart calendar application right now: I can’t trust you with my Reddit karma score, let alone my credit card number.[/quote]That should be enough to get us started.[B] Get contribootin' [highlight]This is not the place to ask questions about general web development. Go [URL="http://www.facepunch.com/threads/1018536-Web-Development-Questions-That-Don-t-Need-Their-Own-Thread"]here[/URL] instead.[/highlight] [/B]
  • Would my 'Common Mistakes (AKA How to Not Get Your Shit Fucked Up)' thread count? [url]http://www.facepunch.com/threads/1013645-Common-Mistakes-(AKA-How-to-Not-Get-Your-Shit-Fucked-Up[/url]) [editline]23rd December 2010[/editline] I love how organised this entire section is in comparison to just about every other section on FP.
  • I had [url=http://www.amazon.com/Design-Sites-Principles-Customer-Centered-Experience/dp/020172149X]The Design of Sites[/url] as a textbook and I liked it so much I didn't sell it after the class was over.
  • An excellent resource on web usability and other useful web tips is Jakob Nielsen's [url=http://www.useit.com]useit.com[/url].
  • [QUOTE=---;26893152]An excellent resource on web usability and other useful web tips is Jakob Nielsen's [url=http://www.useit.com]useit.com[/url].[/QUOTE]That site shows otherwise.
  • I've got one. [b]Always use a Doctype that triggers standards mode[/b] I'm seeing more and more pages these days that either don't have doctypes, or use transitional doctypes. These all trigger "quirks mode" or the like in web browsers, in these modes the browsers don't follow certain parts of the CSS specs for backwards compatibility. Read this page: [url]http://www.quirksmode.org/css/quirksmode.html[/url] and stop doing things wrong.
  • [QUOTE=TheDecryptor;26896871]I've got one. [b]Always use a Doctype that triggers standards mode[/b] I'm seeing more and more pages these days that either don't have doctypes, or use transitional doctypes. These all trigger "quirks mode" or the like in web browsers, in these modes the browsers don't follow certain parts of the CSS specs for backwards compatibility. Read this page: [url]http://www.quirksmode.org/css/quirksmode.html[/url] and stop doing things wrong.[/QUOTE] <!doctype html> HTML 5 solves the world's problems.
  • [QUOTE=TehWhale;26893705]That site shows otherwise.[/QUOTE] That wasn't my point. <trolling> Read the articles, asshole. HURR IT'S NOT WEB 2.0 WHERES THE GRADIENTS AND CSS BUTTONS? IS IT PHP? PHP SUX. SO DOES APACHE. WHY DON'T YOU USE XML? I BETTER CHECK FOR XSS VULNERABILITIES! LOL, CSS3, I USE CSS4. DERP DERP IT'S USING DEPRECATED HTML TAGS HURR! I'M GOING TO CREATE A CUSTOM CMS SYSTEM FOR IT! WHO CARES ABOUT CONTENT IF IT LOOKS PRETTY! I BET HE HAS SHARED HOSTING LOL, HE SHOULD GET AN OFFSHORE VPS, IT'S FASTER, LOL. WHERE'S THE TWITTER TICKER? IT STOLE MY CSS RESET CODE!!?!?! HAHAH I BET HE USED FRONTPAGE AND NOTEPAD, SUBLEMON EDITOR IS BETTER LOL, I BET HE DIDN'T EVEN PHOTOSHOP THE DESIGN! </trolling>
  • I'm just saying it doesn't look like a nice site that would give good tips. I said nothing about the content.
  • [url]http://www.quirksmode.org/[/url] is an excellent resource for browser compatibility.
  • [QUOTE=PiXeN;26901776]<!doctype html> HTML 5 solves the world's problems.[/QUOTE] Yep, it'll trigger the most standard behaviour in every browser out there.
  • [QUOTE=---;26919689]HURR IT'S NOT WEB 2.0 WHERES THE GRADIENTS AND CSS BUTTONS? IS IT PHP? PHP SUX. SO DOES APACHE. WHY DON'T YOU USE XML? I BETTER CHECK FOR XSS VULNERABILITIES! LOL, CSS3, I USE CSS4. DERP DERP IT'S USING DEPRECATED HTML TAGS HURR! I'M GOING TO CREATE A CUSTOM CMS SYSTEM FOR IT! WHO CARES ABOUT CONTENT IF IT LOOKS PRETTY! I BET HE HAS SHARED HOSTING LOL, HE SHOULD GET AN OFFSHORE VPS, IT'S FASTER, LOL. WHERE'S THE TWITTER TICKER? IT STOLE MY CSS RESET CODE!!?!?! HAHAH I BET HE USED FRONTPAGE AND NOTEPAD, SUBLEMON EDITOR IS BETTER LOL, I BET HE DIDN'T EVEN PHOTOSHOP THE DESIGN! </trolling>[/QUOTE] That's the biggest load of bullshit I have ever read, and a shit attempt at 'troll mode'.
  • [QUOTE=---;26919689]That wasn't my point. <trolling> Read the articles, asshole. HURR IT'S NOT WEB 2.0 WHERES THE GRADIENTS AND CSS BUTTONS? IS IT PHP? PHP SUX. SO DOES APACHE. WHY DON'T YOU USE XML? I BETTER CHECK FOR XSS VULNERABILITIES! LOL, CSS3, I USE CSS4. DERP DERP IT'S USING DEPRECATED HTML TAGS HURR! I'M GOING TO CREATE A CUSTOM CMS SYSTEM FOR IT! WHO CARES ABOUT CONTENT IF IT LOOKS PRETTY! I BET HE HAS SHARED HOSTING LOL, HE SHOULD GET AN OFFSHORE VPS, IT'S FASTER, LOL. WHERE'S THE TWITTER TICKER? IT STOLE MY CSS RESET CODE!!?!?! HAHAH I BET HE USED FRONTPAGE AND NOTEPAD, SUBLEMON EDITOR IS BETTER LOL, I BET HE DIDN'T EVEN PHOTOSHOP THE DESIGN! </trolling>[/QUOTE] Just fucking stop right now.
  • [QUOTE=---;26919689]That wasn't my point. <trolling> Read the articles, asshole. HURR IT'S NOT WEB 2.0 WHERES THE GRADIENTS AND CSS BUTTONS? IS IT PHP? PHP SUX. SO DOES APACHE. WHY DON'T YOU USE XML? I BETTER CHECK FOR XSS VULNERABILITIES! LOL, CSS3, I USE CSS4. DERP DERP IT'S USING DEPRECATED HTML TAGS HURR! I'M GOING TO CREATE A CUSTOM CMS SYSTEM FOR IT! WHO CARES ABOUT CONTENT IF IT LOOKS PRETTY! I BET HE HAS SHARED HOSTING LOL, HE SHOULD GET AN OFFSHORE VPS, IT'S FASTER, LOL. WHERE'S THE TWITTER TICKER? IT STOLE MY CSS RESET CODE!!?!?! HAHAH I BET HE USED FRONTPAGE AND NOTEPAD, SUBLEMON EDITOR IS BETTER LOL, I BET HE DIDN'T EVEN PHOTOSHOP THE DESIGN! </trolling>[/QUOTE] It's the first thing people notice, it's important, especially a site that's supposed to be helping you with things like that, you'd expect them to have a nice looking site too, calm down and stop being an idiot.
  • [QUOTE=StinkyJoe;26925591]Just fucking stop right now.[/QUOTE] Why aren't you the WebDev mod yet?
  • [B][URL="http://www.newscientist.com/blogs/nstv/2010/12/best-videos-of-2010-progress-bar-illusion.html"]New Scientist: The Progress Bar Illusion[/URL] [/B][quote] Simple optical illusions can make it seem like the progress bars on your file downloads are moving faster than they actually are. Ripple effects and pulses of light are among the tricks computer programmers can use to keep you waiting those extra seconds.[/quote]
  • [QUOTE=StinkyJoe;26980279][B][URL="http://www.newscientist.com/blogs/nstv/2010/12/best-videos-of-2010-progress-bar-illusion.html"]New Scientist: The Progress Bar Illusion[/URL] [/B][/QUOTE] That's actually pretty interesting. I think that is also the same kind of thing Windows Vista/ 7 has on the Explorer based loading bars.
  • may seem obvious but w3schools is actually quite good for use as a cheatsheet :D
  • [b][url=http://www.jankoatwarpspeed.com/post/2010/12/23/feature-creep-users-goals.aspx]Prevent feature-creep by focusing on users' goals.[/url][/b] [quote]Feature-creep or featuritis is a tendency to constantly add features which inevitably leads to complex products that are confusing and hard to use. To make matters worse, by adding features we move the product away from solving primary issues - the reason for making the product in the first place. Some products are even conceived with featuritis. Adding features is the easiest to do in the world of software. There is no need for physical changes plus they are quick and easy to accomplish. Thus, most software products suffer from this disease. [/quote]
  • [B]DEFCON 18 - How I Met Your Girlfriend [I]with Samy Kamkar [/I][/B][quote]How I Met Your Girlfriend: The discovery and execution of entirely new classes of Web attacks in order to meet your girlfriend. This includes newly discovered attacks including HTML5 client-side XSS (without XSS hitting the server!), PHP session hijacking and random numbers (accurately guessing PHP session cookies), browser protocol confusion (turning a browser into an SMTP server), firewall and NAT penetration via Javascript (turning your router against you), remote iPhone Google Maps hijacking (iPhone penetration combined with HTTP man-in-the-middle), extracting extremely accurate geolocation information from a Web browser (not using IP geolocation), and more.[/quote][B][/B]1/3 [media]http://youtube.com/watch?v=fEmO7wQKCMw[/media] 2/3 [media]http://youtube.com/watch?v=2ctRfWnisSk[/media] 3/3 [media]http://youtube.com/watch?v=vJtmZZGcR54[/media] [U] [/U]
  • [QUOTE=StinkyJoe;26997212][B]DEFCON 18 - How I Met Your Girlfriend [I]with Samy Kamkar [/I][/B][B][/B]1/3 [media]http://youtube.com/watch?v=fEmO7wQKCMw[/media] 2/3 [media]http://youtube.com/watch?v=2ctRfWnisSk[/media] 3/3 [media]http://youtube.com/watch?v=vJtmZZGcR54[/media] [U] [/U][/QUOTE] I saw this on Reddit earlier today and it's an excellent and highly interesting talk.
  • Some more links: [url=https://developer.mozilla.org/en/gecko_dom_reference]Gecko DOM Reference[/url] Everything you never wanted to know about html/css/javascript in Firefox. [url=http://msdn.microsoft.com/en-us/library/ms533050%28v=vs.85%29.aspx]Internet Explorer HTML and DHTML Reference[/url] Everything you never wanted to know about html/css/javascript in Internet Explorer. [url=http://help.dottoro.com/llqwxqoe.php]Dottoro Web Reference[/url] Best javascript reference that I've seen, and I only found this site about 10 mins ago.
  • [QUOTE=Ortzinator;26887854]I had [url=http://www.amazon.com/Design-Sites-Principles-Customer-Centered-Experience/dp/020172149X]The Design of Sites[/url] as a textbook and I liked it so much I didn't sell it after the class was over.[/QUOTE] I just ordered that book for $0.37
  • [b][url=http://stackoverflow.com/questions/621884/database-development-mistakes-made-by-application-developers/]Database development mistakes made by Application Developers - Stack Overflow[/url][/b] Tip: jump to the first answer.
  • [B][URL="http://www.codinghorror.com/blog/2007/10/a-visual-explanation-of-sql-joins.html"]Coding Horror - A Visual Explanation of SQL Joins[/URL][/B] [quote]I thought Ligaya Turmelle's post on SQL joins was a great primer for novice developers. Since SQL joins appear to be set-based, the use of Venn diagrams to explain them seems, at first blush, to be a natural fit. However, like the commenters to her post, I found that the Venn diagrams didn't quite match the SQL join syntax reality in my testing. I love the concept, though, so let's see if we can make it work. Assume we have the following two tables. Table A is on the left, and Table B is on the right. We'll populate them with four records each. [/quote] [editline]6th January 2011[/editline] [IMG]http://i45.tinypic.com/rs6as4.jpg[/IMG] [B][URL="http://www.amazon.com/PHP-Object-Oriented-Solutions-David-Powers/dp/1430210117"]PHP Object-Oriented Solutions[/URL][/B] by David Powers [quote]With the surge of popularity of PHP 5, and with PHP 6 just around the corner, Object-Oriented Programming is now an important consideration for PHP developers. This version-neutral book is a gentle introduction to Object-Oriented Programming (OOP) that won’t overburden you with complex theory. It teaches you the essential basics of OOP that you’ll need to know before moving onto a more advanced level, and includes a series of pre-packaged scripts that you can incorporate into your existing sites with the minimum of effort. (...)[/quote] [IMG]http://www.lsl.com.au/images/images-ref/php-objects-patterns-practice.jpg[/IMG] [B][URL="http://www.amazon.com/PHP-5-Objects-Patterns-Practice/dp/1590593804"]PHP 5 Objects, Patterns, and Practice[/URL][/B] by Matt Zandstra [quote]PHP 5's object-oriented enhancements are among the most significant improvements in the 10+ year history of the language. This book introduces you to those new features and the many opportunities they provide, as well as a number of tools that will help you maximize development efforts. The book begins with a broad overview of PHP 5's object-oriented features, introducing key topics like class declaration, object instantiation, inheritance, and method and property encapsulation. You'll also learn about advanced topics including static methods and properties, abstract classes, interfaces, exception handling, object cloning, and more. You'll also benefit from an extensive discussion regarding object-oriented design best practices.(...)[/quote]
  • [img]http://magrabi.files.wordpress.com/2008/12/the-ruby-programmng-language-cover.jpg[/img] [b][url=http://www.amazon.com/Ruby-Programming-Language-David-Flanagan/dp/0596516177]The Ruby Programming Language[/url][/b] by David Flanagan [quote]The Ruby Programming Language is the authoritative guide to Ruby and provides comprehensive coverage of versions 1.8 and 1.9 of the language. This book begins with a quick-start tutorial to the language, and then explains the language in detail from the bottom up: from lexical and syntactic structure to datatypes to expressions and statements and on through methods, blocks, lambdas, closures, classes and modules. The book also includes a long and thorough introduction to the rich API of the Ruby platform, demonstrating -- with heavily-commented example code -- Ruby's facilities for text processing, numeric manipulation, collections, input/output, networking, and concurrency. An entire chapter is devoted to Ruby's metaprogramming capabilities. The Ruby Programming Language documents the Ruby language definitively but without the formality of a language specification. It is written for experienced programmers who are new to Ruby, and for current Ruby programmers who want to challenge their understanding and increase their mastery of the language.[/quote] [img]http://www.lsl.com.au/images/images-ref/csharp-depth.jpg[/img] [b][url=http://www.amazon.com/Depth-What-you-need-master/dp/1933988363]C# in Depth[/url][/b] by Jon Skeet [quote] C# in Depth is a completely new book designed to propel existing C# developers to a higher level of programming skill. One simple principle drives this book: explore a few things deeply rather than offer a shallow view of the whole C# landscape. If you often find yourself wanting just a little more at the end of a typical chapter, this is the book for you. Expert author Jon Skeet dives into the C# language, plumbing new C# 2 and 3 features and probing the core C# language concepts that drive them. This unique book puts the new features into context of how C# has evolved without a lengthy rehearsal of the full C# language. C# in Depth briefly examines the history of C# and the .NET framework and reviews a few often-misunderstood C# 1 concepts that are very important as the foundation for fully exploiting C# 2 and 3. Because the book addresses C# 1 with a light touch, existing C# developers don't need to pick through the book in order to find new material to enhance their skills. [/quote] [img]http://images.amazon.com/images/P/0596000855.01.LZZZZZZZ.jpg[/img] [b][url=http://www.amazon.com/Programming-Python-Mark-Lutz/dp/0596009259]Programming Python[/url][/b] by Mark Lutz [quote]Already the industry standard for Python users, Programming Python from O'Reilly just got even better. This third edition has been updated to reflect current best practices and the abundance of changes introduced by the latest version of the language, Python 2.5. Whether you're a novice or an advanced practitioner, you'll find this refreshed book more than lives up to its reputation. Programming Python, 3rd Edition, teaches you the right way to code. It explains Python language syntax and programming techniques in a clear and concise manner, with numerous examples that illustrate both correct usage and common idioms.[/quote]
  • [B][URL="http://saweis.net/crypto.html"]A Mini-Course in Cryptography[/URL][/B] - Stephen A. Weis ([B] ex-member of the Applied Security Group @ Google[/B]) From that page - [B]Recommended Reading[/B] [quote] [B] Suggested Readings [/B] [LIST] [*]Week 1: [LIST] [*] [URL="http://www.gaudior.net/alma/johnny.pdf"]"Why Johnny Can't Encrypt"[/URL], Alma Whitten and J.D. Tygar. [I]An (un)usability study of PGP.[/I] [*] [URL="http://groups.csail.mit.edu/cis/crypto/classes/6.857/papers/diffie-hellman.pdf"]"New Directions in Cryptography"[/URL], Whitfield Diffie and Martin Hellman. [I]A seminal paper in public-key cryptography. Recommended if interested in the underlying math of public-key crypto.[/I] [*] [URL="http://people.csail.mit.edu/rivest/Rsapaper.pdf"]"A Method for Obtaining Digital Signatures and Public-Key Cryptosystems"[/URL], Ron Rivest, Adi Shamir, and Len Adleman. [I]The RSA paper. Recommended if interested in the underlying math of public-key crypto.[/I] [/LIST] [*]Week 2: [LIST] [*] [URL="http://www.interhack.net/people/cmcurtin/snake-oil-faq.html"]"Snake Oil FAQ"[/URL], Matt Curtin; [URL="http://www.schneier.com/crypto-gram-9902.html#snakeoil"]"Snake Oil"[/URL], Bruce Schneier [*] [URL="http://crypto.stanford.edu/%7Edabo/papers/RSA-survey.pdf"]"Twenty Years of Attacks on the RSA Cryptosystem"[/URL], Dan Boneh [I]Good overview of many different attacks on RSA. Some technical details.[/I] [*] [URL="http://www-cse.ucsd.edu/%7Emihir/papers/hmac.html"]The HMAC Papers[/URL], [URL="http://www-cse.ucsd.edu/users/mihir/papers/oaep.html"]The OAEP Papers[/URL], Mihir Bellare et. al. [I]These are technical papers and demonstrate some of the difficulty in composing crypto primitives.[/I] [*] [URL="http://pdos.csail.mit.edu/papers/webauth:tr.pdf"]"Dos and Don'ts of Client Authentication on the Web"[/URL], Kevin Fu, Emil Sit, Kendra Smith, and Nick Feamster. [I]A great case study in practical web authentication. Recommended for engineers.[/I] [*] [URL="http://www.imc.org/ietf-openpgp/mail-archive/msg14307.html"]Bleichenbacher's RSA signature forgery[/URL] [/LIST] [*]Week 3: [LIST] [*] [URL="http://www.wisdom.weizmann.ac.il/%7Eoded/zk-tut02.html"]Zero Knowledge Tutorial[/URL], Oded Goldreich [I]This is a good introduction, but quickly gets pretty technical.[/I] [*] [URL="http://portal.acm.org/ft_gateway.cfm?id=802212&type=pdf&coll=GUIDE&dl=GUIDE&CFID=46530297&CFTOKEN=46983323"]Probabilistic encryption[/URL], Goldwasser and Micali [I]This paper introduced the idea of semantic security[/I] [/LIST] [*]Week 4: [LIST] [*] [URL="http://www.voterverifiable.com/article.pdf"]Secret Ballot Receipts: True Voter-Verifiable Election[/URL]. David Chaum. [*] [URL="http://ben.adida.net/research/AdidaRivest-scratch-and-vote.pdf"]Scratch and Vote[/URL]. Ben Adida and Ron Rivest. [/LIST] [/LIST] [/quote][editline]9th January 2011[/editline] [B]Identifying Suspicious URLs: An Application of Large-Scale Online Learning [/B] [media][URL]http://youtube.com/watch?v=n3iANHusfcY[/URL][/media] [quote]Google Tech Talk May 5, 2010 Presented by Justin Ma. We explore online learning approaches for detecting malicious Web sites (those involved in criminal scams) using lexical and host-based features of the associated URLs. We show that this application is particularly appropriate for online algorithms as the size of the training data is larger than can be efficiently processed in batch and because the distribution of features that typify malicious URLs is changing continuously. Using a real-time system we developed for gathering URL features, combined with a real-time source of labeled URLs from a large Web mail provider, we demonstrate that recently-developed online algorithms can be as accurate as batch techniques, achieving daily classification accuracies up to 99% over a balanced data set. [/quote] [editline]9th January 2011[/editline] [b]Search User Interfaces[/b] [media]http://www.youtube.com/watch?v=BpBAg4Ndi9w[/media] [quote]Google Tech Talk November 23, 2009 Presented by Professor Marti Hearst, School of Information, University of California, Berkeley. Marti will talk about her recently published book, "Search User Interfaces," which presents the state of the art of search interface design, based on both academic research and deployment in commercial systems.[/quote]
  • [B][URL="http://progfu.com/post/2668280164/your-code-is-not-self-documenting"]Your Code is not Self-Documenting[/URL][/B] - ProgFu [quote]There is this movement that people should try to write a self documenting code. Such code doesn&#8217;t require any comments, because it is obvious what it does. While that might be true, it&#8217;s not the whole truth.[/quote][editline]9th January 2011[/editline] [IMG]http://www.computer-books.us/images/diveintopython.jpg[/IMG] [B][URL="http://diveintopython.org/"]Dive Into Python[/URL][/B] by Mark Pilgrim (2009) [quote]Pilgrim's book Dive Into Python is a teach-by-example guide to the paradigms of programming in Python and modern software development techniques. It assumes some preexisting knowledge of programming, although not necessarily in Python. Much of the book consists of example programs with annotations and explanatory text, generally describe how to modify an example to serve new purposes. One early example program reads through a directory of MP3 files and lists the header information, such as artist, album, etc. Other topics covered include object oriented programming, documentation, unit testing, and accessing and parsing HTML and XML.[/quote][B]Note:[/B] This book is available for free in anything from DOC to PDF, and I highly recommend it if you want to get started with python. For absolute beginners it might be a better book than 'Programming Python' that Combino posted above. [editline]9th January 2011[/editline] [B][URL="http://ontwik.com/javascript/ryan-dahl-introduction-to-node-js/"]Introduction to Node.js[/URL] - [/B]Ryan Dahl [quote]Ryan Dahl, the creator of Node.js, takes a moment to soak it all in before he introduces the audience to the technology by coding a web chat server live and in real time -- hilarity ensues as the camp participants play around and prank the public IP address.[/quote][editline]9th January 2011[/editline] [B]Google I/O 2010 - Creating positive user experiences[/B] - John Zeratsky & Matt Shobe [media]http://youtube.com/watch?v=jeIv7b5lv74[/media] [quote]Good user experience isn't just about good design. Learn how to create a positive user experience by being fast, open, engaged, surprising, polite, and, well... being yourself. Chock full of examples from the web and beyond, this talk is a practical introduction for developers who are passionate about user experience but may not have a background in design. [/quote][editline]9th January 2011[/editline] [IMG]http://www.coverbrowser.com/image/design-books/728-4.jpg[/IMG] [B][URL="http://www.amazon.com/Code-Complete-Practical-Handbook-Construction/dp/0735619670"]Code Complete - A Practical Handbook of Software Construction(Second Edition)[/URL][/B] - Steve McConnell (2004) [quote]Code Complete is a software development book, written by Steve McConnell and published by Microsoft Press, urging developers to get past code and fix programming and the "big design up front" waterfall model. It is also a compendium of software construction techniques, from naming variables to deciding when to write a subroutine. Code Complete has received outstanding reviews, being widely regarded as one of the leading must-reads for software developers. The book tends to be right on top of the reading list for programmers of software development companies. It won a Jolt award in 1993.[/quote][B]Note:[/B] This certainly is not for the average web-developer, but if you have some extra time and an interest in general development, I highly recommend it. [editline]9th January 2011[/editline] [B][URL="http://net.pku.edu.cn/%7Ecourse/cs410/reading/bush_aswemaythink.pdf"]As We May Think[/URL][/B] - Vannevar Bush (1945) [quote]This has not been a scientist's war; it has been a war in which all have had a part. The scientists, burying their old professional competition in the demand of a common cause, have shared greatly and learned much. It has been exhilarating to work in effective partnership. Now, for many, this appears to be approaching an end. What are the scientists to do next?[/quote][B]Note:[/B] 13 page PDF. Not directly related to Web Development, or programming for that matter, but a very interesting read I'm sure some of you will enjoy. [editline]9th January 2011[/editline] [B][URL="https://panopticlick.eff.org/browser-uniqueness.pdf"]How Unique Is Your Web Browser?[/URL][/B] - Peter Eckersly, Electronic Frontier Foundation (2010, I believe) [quote]We investigate the degree to which modern web browsers are subject to device fingerprinting" via the version and configuration information that they will transmit to websites upon request. We implemented one possible fingerprinting algorithm, and collected these fingerprints from a large sample of browsers that visited our test side, panopticlick.eff.org. We observe that the distribution of our fingerprint contains at least 18.1 bits of entropy, meaning that if we pick a browser at random, at best we expect that only one in 286,777 other browsers will share its fingerprint. Among browsers that support Flash or Java, the situation is worse, with the average browser carrying at least 18.8 bits of identifying information. 94.2% of browsers with Flash or Java were unique in our sample.[/quote]