Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP

Comparing changes

Choose two branches to see what's changed or to start a new pull request. If you need to, you can also compare across forks.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also compare across forks.
base fork: cwgem/cwgem.github.com
base: d473037db2
...
head fork: cwgem/cwgem.github.com
compare: f56a293779
Checking mergeability… Don't worry, you can still create the pull request.
  • 4 commits
  • 9 files changed
  • 0 commit comments
  • 1 contributor
View
7 articles.html
@@ -25,11 +25,8 @@
</ul>
</div>
<div id="content">
-<div id="preamble">
-<div class="sectionbody">
+<h2 id="_introduction" class="sect1">Introduction</h2>
<p class="paragraph">These are a list of articles I&#8217;ve written on various topics. They are generated with AsciiDoc and edited with Emacs using adoc-mode.</p>
-</div>
-</div>
<h3 id="_security" class="sect2">Security</h3>
<ul class="ulist">
<li>
@@ -69,7 +66,7 @@ <h3 id="_society" class="sect2">Society</h3>
</div>
<div id="footer">
<p id="footer-text">
-Last updated 2013-03-24 17:55:42 PDT
+Last updated 2013-03-24 21:16:02 PDT
</p>
<div id="footer-badges">
<a href="http://validator.w3.org/check?uri=referer">
View
22 css/modern.css
@@ -142,3 +142,25 @@ a:visited { color: #615FA0; border-bottom: 1px dotted #615FA0; }
border: none;
border-bottom: 1px dotted white;
}
+
+blockquote {
+ font-family: Georgia, serif;
+ font-size: 1.2em;
+ font-style: italic;
+ margin-left: 1.5em;
+ padding-left: 1.5em;
+ padding-right: 2em;
+ line-height: 1.45;
+ position: relative;
+ color: #383838;
+}
+
+blockquote:before {
+ display: block;
+ content: "\201C";
+ font-size: 80px;
+ position: absolute;
+ left: -20px;
+ top: -20px;
+ color: #7a7a7a;
+}
View
6 python/class-methods-and-self.html
@@ -198,7 +198,9 @@ <h3 id="_base_classes_and_overrides" class="sect2">Base Classes and Overrides</h
methods directly.</p>
<h3 id="_syntactic_assignment_issue" class="sect2">Syntactic Assignment Issue</h3>
<p class="paragraph">The final reason is more of a design explanation, so I&#8217;ll quote it here instead:</p>
-<pre class="listingblock"><code>Finally, for instance variables it solves a syntactic problem with assignment: since local variables in Python are (by definition!) those variables to which a value is assigned in a function body (and that aren’t explicitly declared global), there has to be some way to tell the interpreter that an assignment was meant to assign to an instance variable instead of to a local variable, and it should preferably be syntactic (for efficiency reasons). C++ does this through declarations, but Python doesn’t have declarations and it would be a pity having to introduce them just for this purpose. Using the explicit self.var solves this nicely. Similarly, for using instance variables, having to write self.var means that references to unqualified names inside a method don’t have to search the instance’s directories. To put it another way, local variables and instance variables live in two different namespaces, and you need to tell Python which namespace to use.</code></pre>
+<blockquote>
+Finally, for instance variables it solves a syntactic problem with assignment: since local variables in Python are (by definition!) those variables to which a value is assigned in a function body (and that aren’t explicitly declared global), there has to be some way to tell the interpreter that an assignment was meant to assign to an instance variable instead of to a local variable, and it should preferably be syntactic (for efficiency reasons). C++ does this through declarations, but Python doesn’t have declarations and it would be a pity having to introduce them just for this purpose. Using the explicit self.var solves this nicely. Similarly, for using instance variables, having to write self.var means that references to unqualified names inside a method don’t have to search the instance’s directories. To put it another way, local variables and instance variables live in two different namespaces, and you need to tell Python which namespace to use.
+</blockquote>
<h2 id="_conclusion" class="sect1">Conclusion</h2>
<p class="paragraph">This in conclusion is the logic behind explicitly indicating <code>self</code> in a
method argument, as well as using it within the method. The logic behind the
@@ -209,7 +211,7 @@ <h2 id="_conclusion" class="sect1">Conclusion</h2>
<div id="footer">
<p id="footer-text">
Version 1.0<br />
-Last updated 2013-03-24 18:48:28 PDT
+Last updated 2013-03-24 21:29:58 PDT
</p>
<div id="footer-badges">
<a href="http://validator.w3.org/check?uri=referer">
View
11 security/secure-workstation.html
@@ -48,12 +48,9 @@ <h2 id="_distribution" class="sect1">Distribution</h2>
<p class="paragraph">This easily combines the two profiles giving the benefits of the hardened toolchain, with the requirements for having a suitable KDE desktop. Finally the stable keyword branch of Gentoo was utilized to remain as solid as possible. The main exception to that was using a non-stable marked kernel and a few other required packages to be as up to date as possible and keep in line with the latest Grsecurity patches.</p>
<h2 id="_kernel" class="sect1">Kernel</h2>
<p class="paragraph">The kernel used is hardened-sources-3.7.8, which includes the <a href="http://grsecurity.net/">Grsecurity patchset</a>, as well as a few other security related patchsets. The importance of utilizing this patchset can be addressed by this quote from the project website:</p>
-<div class="quoteblock">
-<div class="content">
-<p class="paragraph">Unlike other expensive security "solutions" that pretend to achieve security through known-vulnerability patching, signature-based detection, or other reactive methods, grsecurity provides real proactive security. The only solution that hardens both your applications and operating system, Grsecurity is essential for public-facing servers and shared-hosting environments.</p>
-</div>
-<div class="attribution">
-</div></div>
+<blockquote>
+Unlike other expensive security "solutions" that pretend to achieve security through known-vulnerability patching, signature-based detection, or other reactive methods, grsecurity provides real proactive security. The only solution that hardens both your applications and operating system, Grsecurity is essential for public-facing servers and shared-hosting environments.
+</blockquote>
<p class="paragraph">While keeping the system up to date is important, it&#8217;s often hard to keep up with complete accuracy. Grsecurity comes in by providing protection against common attack vectors that most exploits utilize. Configuring Grsecurity in the kernel is incredibly easy, and can be achieved by simply using auto configuration and setting to Desktop accordingly:</p>
<div class="listingblock">
<div class="content"><div class="highlight"><pre>[*] GRsecurity
@@ -220,7 +217,7 @@ <h2 id="_conclusion" class="sect1">Conclusion</h2>
</div>
<div id="footer">
<p id="footer-text">
-Last updated 2013-03-24 18:51:31 PDT
+Last updated 2013-03-24 21:24:27 PDT
</p>
<div id="footer-badges">
<a href="http://validator.w3.org/check?uri=referer">
View
9 security/talk-on-security-process.html
@@ -16,6 +16,7 @@
<div id="wrapper">
<div id="header">
<h1>A Talk On Security Process</h1>
+<p class="postinfo">Posted by <a href="mailto:&lt;cwprogram@live.com&gt;">Chris White</a> on Wed Feb 13 18:48:34 PST 2013</p>
</div>
<div id="menu">
<ul>
@@ -25,11 +26,6 @@
</ul>
</div>
<div id="content">
-<div id="preamble">
-<div class="sectionbody">
-<p class="paragraph"><a href="/">Home</a></p>
-</div>
-</div>
<h2 id="_disclaimer" class="sect1">Disclaimer</h2>
<p class="paragraph">I work for EngineYard, a company that&#8217;s primary target is Rails hosting. Putting Rails in a good light is in the interest of the company I work for, so there might be understandable suspicion of bias. I hope that you, the reader, will read everything and make a critical judgement based on the facts I will present. The reason why I&#8217;m using Rails as a topic of discussion is how recent it is, and the fact that misconceptions have the chance to give people a false sense of security.</p>
<h2 id="_what_8217_s_up_with_these_rails_vulns" class="sect1">What&#8217;s Up With These Rails Vulns?</h2>
@@ -82,8 +78,7 @@ <h2 id="_so_what_do_i_do" class="sect1">So What Do I Do?</h2>
</div>
<div id="footer">
<p id="footer-text">
-Version 1.0<br />
-Last updated 2013-03-21 22:54:43 PDT
+Last updated 2013-03-24 21:12:44 PDT
</p>
<div id="footer-badges">
<a href="http://validator.w3.org/check?uri=referer">
View
2  sources/articles.asciidoc
@@ -1,6 +1,8 @@
Articles
========
+== Introduction
+
These are a list of articles I've written on various topics. They are generated with AsciiDoc and edited with Emacs using adoc-mode.
=== Security
View
8 sources/python/class-methods-and-self.asciidoc
@@ -208,10 +208,12 @@ methods directly.
The final reason is more of a design explanation, so I'll quote it here instead:
-[quote]
-----
+[subs="none"]
+++++
+<blockquote>
Finally, for instance variables it solves a syntactic problem with assignment: since local variables in Python are (by definition!) those variables to which a value is assigned in a function body (and that aren’t explicitly declared global), there has to be some way to tell the interpreter that an assignment was meant to assign to an instance variable instead of to a local variable, and it should preferably be syntactic (for efficiency reasons). C++ does this through declarations, but Python doesn’t have declarations and it would be a pity having to introduce them just for this purpose. Using the explicit self.var solves this nicely. Similarly, for using instance variables, having to write self.var means that references to unqualified names inside a method don’t have to search the instance’s directories. To put it another way, local variables and instance variables live in two different namespaces, and you need to tell Python which namespace to use.
-----
+</blockquote>
+++++
== Conclusion
View
8 sources/security/secure-workstation.asciidoc
@@ -40,10 +40,12 @@ This easily combines the two profiles giving the benefits of the hardened toolch
The kernel used is hardened-sources-3.7.8, which includes the http://grsecurity.net/[Grsecurity patchset], as well as a few other security related patchsets. The importance of utilizing this patchset can be addressed by this quote from the project website:
-[quote]
-____
+[subs="none"]
+++++
+<blockquote>
Unlike other expensive security "solutions" that pretend to achieve security through known-vulnerability patching, signature-based detection, or other reactive methods, grsecurity provides real proactive security. The only solution that hardens both your applications and operating system, Grsecurity is essential for public-facing servers and shared-hosting environments.
-____
+</blockquote>
+++++
While keeping the system up to date is important, it's often hard to keep up with complete accuracy. Grsecurity comes in by providing protection against common attack vectors that most exploits utilize. Configuring Grsecurity in the kernel is incredibly easy, and can be achieved by simply using auto configuration and setting to Desktop accordingly:
View
7 sources/security/talk-on-security-process.asciidoc
@@ -1,9 +1,8 @@
A Talk On Security Process
==========================
-Chris White<cwprogram@live.com>
-v1.0, Wed Feb 13 18:48:34 PST 2013
-
-link:/[Home]
+:Author: Chris White
+:Email: <cwprogram@live.com>
+:Date: Wed Feb 13 18:48:34 PST 2013
== Disclaimer

No commit comments for this range

Something went wrong with that request. Please try again.