Google tutorial/crash courses for learning AI:
https://ai.google/education/#?modal_active=none
https://ai.google/education/#?modal_active=none
Tuesday, March 6, 2018
Useful Links for JEE Devlopment
1. Links on Burlap Web service creation. A very easy way for Java to Java remoting:
http://www.devx.com/java/Article/27300/0/page/1
http://www.christianschenk.org/blog/webservices-with-hessian-and-burlap/
2. J2EE application Deployment Problem:
Problem:
java.lang.IllegalStateException: Web app root system property already set to
a different value: 'webapp.root'
Resolution
http://forum.springsource.org/archive/index.php/t-32873.html
http://forum.springsource.org/archive/index.php/t-24073.html
3. Solution on Axis 2 issue on Upgrade to 1.7.4 from 1.4.1:
Configuration required:
<parameter name="disableREST" locked="false">true</parameter>
Detail explanation in below blog
http://alloutfornoloss.com/axis2-epr-issue/
4.REST API Naming convention:
https://google.github.io/styleguide/jsoncstyleguide.xml?showone=Property_Name_Format#Property_Name_Format
Printing the DBMS_OUTPUT.PUT_LINE output from oracle to System.out in Java
Often we need to debug a Oracle stored procedure which is called from Java. In that case, it is helpful to log the DBMS_OUTPUT.put_line from Java using JDBC driver.
The below link guides a way to retrieve DBMS_OUTPUT.put_line from JDBC:
https://asktom.oracle.com/pls/asktom/f?p=100:11:0::::P11_QUESTION_ID:45027262935845
The below link guides a way to retrieve DBMS_OUTPUT.put_line from JDBC:
https://asktom.oracle.com/pls/asktom/f?p=100:11:0::::P11_QUESTION_ID:45027262935845
Eclipse Papyrus: An easy way to create UML diagrams
As a software designer/architect one would always need to take the help of UML. There are many open source tools available in market to create UML diagrams.
Visual Paradigm,Star UML to name a few. But my best personal choice is Eclipse Papyrus. This tool is very easy to learn to create UML diagrams.
Check out youtube videos on how to create various UML diagrams using Eclipse Papyrus:
https://www.youtube.com/playlist?list=PLoWne5q-c9E_Q2_eAUZKPDA5K0V-O5zXs
Check out Eclipse Papyrus here
https://www.eclipse.org/papyrus/
Download Link
https://www.eclipse.org/papyrus/download.html
Visual Paradigm,Star UML to name a few. But my best personal choice is Eclipse Papyrus. This tool is very easy to learn to create UML diagrams.
Check out youtube videos on how to create various UML diagrams using Eclipse Papyrus:
https://www.youtube.com/playlist?list=PLoWne5q-c9E_Q2_eAUZKPDA5K0V-O5zXs
Check out Eclipse Papyrus here
https://www.eclipse.org/papyrus/
Download Link
https://www.eclipse.org/papyrus/download.html
Monday, March 5, 2018
Useful Book Links
Books on programming:
https://github.com/EbookFoundation/free-programming-books/blob/master/free-programming-books.md
https://github.com/bjut-hz/E-Books
https://github.com/sivaprak/myBooks
https://github.com/sanigo/books
O'Reilly Free Books:
https://gist.github.com/viruscmd/5960adf1e5b5cf1e3d465dd3ad9e1aa8
https://gist.github.com/abstractart/7b969dd9004cd11e04ba0a031fa4ab6c
Togaf Books
https://github.com/pankajchopra/togaf
Blockchain Books:
https://github.com/ShubhamTatvamasi/blockchainbooks
Books on Hadoop/Big Data
https://github.com/TechBookHunter/Free-Hadoop-Books/tree/master/book
https://github.com/EbookFoundation/free-programming-books/blob/master/free-programming-books.md
https://github.com/bjut-hz/E-Books
https://github.com/sivaprak/myBooks
https://github.com/sanigo/books
O'Reilly Free Books:
https://gist.github.com/viruscmd/5960adf1e5b5cf1e3d465dd3ad9e1aa8
https://gist.github.com/abstractart/7b969dd9004cd11e04ba0a031fa4ab6c
Togaf Books
https://github.com/pankajchopra/togaf
Blockchain Books:
https://github.com/ShubhamTatvamasi/blockchainbooks
Books on Hadoop/Big Data
https://github.com/TechBookHunter/Free-Hadoop-Books/tree/master/book
Saturday, March 3, 2018
Axis 2 Directory traversal vulnerability
Axis 2 Directory traversal security vulnerability
Recently I have encountered one security issue
of Axis 2 (1.4.1) service. The attacker can navigate to the axis.xml using the
link https://victim.com/axis2/services/Version?xsd=../conf/axis2.xml
& can see the Axis 2 username & password. Then attacker can deploy any malicious
service to hack the system.
The issue seems to happen if the Axis 2
version <1.5.3. Upgrading the existing version to 1.5.3 (at minimal,
upper versions also support) solves the problem.
The root cause of the issue is below configuration in Axis 2 1.4.1
version:
<transportReceiver name="http"
class="org.apache.axis2.transport.http.SimpleHTTPServer">
<parameter
name="port">8080</parameter>
SimpleHTTPServer does not block any request & hence directory
traversal is possible.
I have followed the below steps to upgrade
the Axis 2 from 1.4.1 to 1.5.3
1.
Upgrade the Axis
2 version to 1.5.3. & update the jars
2.
Once the JARS
have been upgraded, change the below ones in conf\axis2.xml
replace
<transportReceiver name="http"
class="org.apache.axis2.transport.http.SimpleHTTPServer">
<parameter
name="port">8080</parameter>
with below one
<transportReceiver name="http"
class="org.apache.axis2.transport.http.AxisServletListener">
<parameter
name="port">8080</parameter>
</transportReceiver>
<transportReceiver
name="https"
class="org.apache.axis2.transport.http.AxisServletListener">
<parameter
name="port">8443</parameter>
</transportReceiver>
3.
Comment
TCPTransportSender in axis2.xml
<!--
<transportSender
name="tcp"
class="org.apache.axis2.transport.tcp.TCPTransportSender"/>-->
Subscribe to:
Posts (Atom)