A presentation covering common attack methods and how to secure web applications when altering the code is not an option.
Neglected web applications are both a breeding ground for malicious activity on the web and a concern for web hosting providers. This talk will cover some basic info on three common attack methods (XSS, SQL Injection and insecure upload form) as well as three easy ways system administrators can address each type of threat, plus some other information on security best practices.
Learn essential security concepts and how to apply them on Linux. security
This class will offer an explanation of important IT security concepts and practical examples of system hardening, access control, privilege management, intrusion detection, and more. Beginners will learn how to think about security and how to use some important tools. Experienced attendees will receive a refresher on risk-based security management while learning about some of the latest advances in Linux security tools.
Monitoring the DevOps Way
Today's operations environments can generate a huge volume of raw data. It's getting more challenging (especially as our systems scale out) to manage just storing all that information, let alone turn it into something comprehensible. When large-scale system issues surface, every second can matter when you're searching for a resolution. Even more importantly, the right information can make the difference between an issue happening or not happening in the first place! Thankfully, Open Source can help! This talk will cover, using examples from production life at Media Temple operations, * Some proven patterns that help with * Reducing the amount of data that gets generated in the first place * Storing, visualizing and exploring that data * Making that data quickly accessible and comprehensible * A survey of both established and emerging Open Source tools available in this area
Splunk Day @ SCALE! Splunk invites everyone to come and be a part of the first Splunk Day at the Southern California Linux Expo on February 26th, 2011. Splunk Day will feature training courses in Splunk usage, administration, and advanced search and reporting. Also, Splunk SE’s will be on hand to discuss geolocation with Splunk and hold open discussion with lots of Q & A.
This is an excellent opportunity to be more successful with Splunk and learn how to achieve better operational visibility. Normally, these training sessions cost hundreds of dollars, but we’re holding this special free session just for SCALE attendees
A full schedule available on the Splunk special event page. This event is free for SCALE attendees.
This talk compares and contrasts the three Linux slab allocators by comparing them with every benchmark on many machine types and then suggests which is best for various workloads. It also examines future work and what slab allocation may soon look like.
Linux has 3 different slab allocators: SLAB, SLUB, and SLOB. The chosen allocator's performance translates to the kernel's performance as a whole and impacts every subsystem. This talk highlights the slab allocators’ characteristics and presents data on which allocator is superior for different workloads by exhaustively comparing them with every benchmark on different machine types.
Want to know how to seriously test your hardware?
Come hear the answers to the questions many heavy users have: What's better, 32-bit or 64-bit? Does hyperthreading increase performance? How do I get maximum battery life? How do I find out exactly what hardware is being used to build my computer? Let's go beyond the basics to look at the many ways various distros can be optimized to make your hardware better, faster, stronger.
Perl's recent renaissance has produced amazing tools that you too can use today.
The world's best Perl hackers know the value of the CPAN. They write elegant, powerful, and succinct code. They take advantage of Perl and its ecosystem to accomplish great things. Join their ranks by gaining an understanding of the design principles of Perl 5, and acquiring practical guidance on the safest, clearest, and most maintainable features added in the past few years.
MeeGo is a mobile platform based on standard Linux and free desktop technologies. In this session we will discuss the strengths of the platform and its chances to succeed in the mobile industry.
MeeGo aims to become a mainstream platform deployed in handsets, netbooks, tablets, and other mobile form factors. MeeGo consists of: an open project participated by multiple players, a standard Linux stack made of upstream projects, an architecture optimized for Intel/Atom and ARM processors, the regular free software platform development modelm and a Qt environment.
Describe the role of open source in an increasingly commercial space, and the trends and directions / vision for the next 10 years.
As FOSS tools form commercial companies, there has been an increasing commercialization of the configuration space. Cfengine author Mark Burgess will review the successes and failures of configuration technological development, and offer his vision of where technology needs to go to overcome the challenges of the next decade in an increasingly complex, application and "cloud" oriented future.
Postgres features on streaming replication
This talk explores the much-anticipated Postgres 9.0 features of hot standby and streaming replication. It explains how these features work, how to configure them, and their current limitations. It includes a hands-on demonstration that can be done either by the instructor or by students. Link to ppt: http://momjian.us/main/presentations/features.html#hot_streaming