public marks

PUBLIC MARKS from mbertier with tag webdev

March 2008

mod_xsendfile

(via)
mod_xsendfile is a small Apache2 module that processes X-SENDFILE headers registered by the original output handler. If it encounters the presence of such header it will discard all output and send the file specified by that header instead using Apache internals including all optimizations like caching-headers and sendfile or mmap if configured. It is useful for processing script-output of e.g. php, perl or any cgi.

Software is hard | Firecookie

by 4 others (via)
Firecookie is a an extension for Firebug that makes possible to view and manage cookies in your browser.

January 2008

Cross-Site XMLHttpRequest - MDC

(via)
Firefox 3 implements the W3C Access Control working draft, which gives you the ability to do XMLHttpRequests to other web sites

ie7-js - Google Code

by 14 others (via)
IE7 is a JavaScript library to make Microsoft Internet Explorer behave like a standards-compliant browser. It fixes many HTML and CSS issues and makes transparent PNG work correctly under IE5 and IE6.

Jeremiah Grossman: New Flash XSS technique (thousands of websites at risk)

(via)
- Move Flash files to a secondary domain – just as is recommended with all third-party / user generated / untrusted content. This solution has promise as it sets up some domain barriers in the event a vulnerable Flash file shows up linked from your website.

December 2007

Jash: JavaScript Shell

by 3 others (via)
Jash is a DHTML-based window that gives you command-line JavaScript access to the current browser window. With this console you can quickly debug scripts, manipulate the DOM, view the current page's objects, functions, and variables, trace the execution stack, execute arbitrary Javascript, enter new CSS (in IE, Firefox, Opera, and Safari), and much more.

jQuery Form Plugin

The jQuery Form Plugin allows you to easily and unobtrusively upgrade HTML forms to use AJAX. The main methods, ajaxForm and ajaxSubmit, gather information from the form element to determine how to manage the submit process. Both of these methods support numerous options which allows you to have full control over how the data is submitted. Submitting a form with AJAX doesn't get any easier than this!

Ext JS Blog - » Ext 2.0 Final Released

(via)
This new version of the Ext framework is the culmination of many long hours of work and dedication by the Ext Core team as well as our community of testers and supporters. Ext 2.0 is a dramatic step forward from all previous versions of Ext, providing increased performance, ease of configurations, flexibility and UI capabilities.

repcached - add data replication feature to memcached

(via)
"repached" is patch set which adds data replication feature to memcached 1.2.x.

November 2007

Home | Email Standards Project

by 22 others (via)
The Email Standards Project works with email client developers and the design community to improve web standards support and accessibility in email.

Interaction Design Pattern Library - Welie.com

by 11 others (via)
All patterns are listed here. It's quite a bunch of them, but I have tried to group them meaningfully.

django-evolution - Google Code

by 1 other (via)
This is where Django Evolution fits in. Django Evolution is an extension to Django that allows you to track changes in your models over time, and to update the database to reflect those changes.

September 2007

PHPIDS » Web Application Security 2.0 » Index

by 1 other (via)
PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session.

August 2007

About Asido | Asido: PHP Image Processing Solution

by 2 others
* o o Features o Drivers o Howtos o Roadmap o News * Documentation * Download * Bug Tracker * Forums SourceForge.net Asido at Freshmeat.net Support This Project Ohloh Metrics Home » About Asido Asido is a PHP (PHP4/PHP5) image processing solution, with “pluggable” drivers(adapters) for virtually any environment: GD2, Magick Wand, Image Magick via shell, Image Magick via extension, etc.

Syncotype Your Baselines — RobGoodlatte.com

by 2 others (via)
I wrote a simple bookmarklet script that overlays a baseline grid atop everything on the page you’re viewing.

July 2007

Exceptional Performance

by 3 others
Yahoo!'s Exceptional Performance team evangelizes best practices for improving web performance. They conduct research, build tools, write articles and blogs, and speak at conferences. Their best practices center around the rules for high performance web sites.

YSlow for Firebug

by 21 others (via)
YSlow analyzes web pages and tells you why they're slow based on the rules for high performance web sites. YSlow is a Firefox add-on integrated with the popular Firebug web development tool. YSlow gives you: * Performance report card * HTTP/HTML summary * List of components in the page * Tools including JSLint

[ANN] mod_concat

(via)
The ability to concatenate CSS or javascript files into a single HTTP request.

0x000000 ◊ The Hacker Webzine

I've talked about CSRF before, but this time I wanted to show some of the underlying basics of it and explain why it isn't a new trick or something special. It is part of browsers and the way HTTP works, also to remove any argument that POST should be safer then GET. I know this is Internet basics, it still can be refreshing to read it over from time to time.

June 2007

XSS (Cross Site Scripting) Cheat Sheet

by 17 others (via)
This page is for people who already understand the basics of XSS attacks but want a deep understanding of the nuances regarding filter evasion.

DLFP: GNU Affero General Public License : la GPL des applications web

(via)
La FSF vient de publier un premier brouillon pour discussion d'une toute nouvelle licence : la GNU Affero General Public License (GNU AGPL). Cette licence est adaptée au contexte des applications web et des logiciels utilisés sur le réseau en général. Elle marque un tournant important pour la FSF, son domaine ne se réduit plus au logiciel installé traditionnel, mais s'étend à la sphère des services web.

May 2007

minify - Google Code

by 11 others (via)
Minify attempts to fix this problem by combining multiple CSS or JavaScript files into one download. By default, it also removes comments and unnecessary whitespace to decrease the amount of data that must be sent to the browser. Most importantly, it does all of this on the fly and requires only a few simple changes to your existing web pages.

April 2007

alan little’s weblog | transliterator

I needed something for a project I’m working on that would let me easily enter romanised Sanskrit text on a normal keyboard (or better still, find romanised Sanskrit text on the internet) and then convert it to proper devanagari Sanskrit text in unicode.

mbertier's TAGS related to tag webdev

accessibility +   ajax +   apache +   audit +   bestpractices +   clevermarks +   css +   database +   design +   django +   dom +   dotclear +   eclipse +   emacs +   email +   encoding +   firefox +   flash +   framework +   greasemonkey +   groupe:clever age +   guide +   hotlinked +   howto +   html +   http +   i18n +   information architecture +   introduction +   javascript +   linkslist +   linux +   list +   mozilla +   open source +   patterns +   performance +   php +   php5 +   python +   rails +   reference +   rest +   ria +   ruby +   security +   slides +   standards +   testing +   tool +   tools +   ui +   usability +   web20 +   widgets +   wiki +   xhtml +   xml +   xmpp +