All articles tagged code

Playing with Pickle Security

By Nicolas Lara on Friday, March 22, 2013

Reading about the latest vulnerabilities in Rails, got me thinking about a similar issue we have in Python. It is well known that using pickle on untrusted data is insecure to the point of allowing arbitrary code execution. Or at …

Introduction to Django Selenium Testing

By Marco Louro on Friday, November 2, 2012

If you’ve never heard of Selenium, put simply, it’s a tool that allows you to create tests that are run in the browser and interact with your UI in the same way as if you were manually testing your website …

What is WebRTC?

By Graham King on Wednesday, September 12, 2012

WebRTC, short for Web Real Time Communications, is a specification and project adding JavaScript APIs in the browser to: 1. Access a user’s webcam and microphone: getUserMedia. 2. Connect directly to another browser: PeerConnection and DataChannel. The main use case …

What is SPDY?

By Graham King on Thursday, July 12, 2012

This is HTTP A big friendly unsecured clear-text, line-oriented bear. This is SPDY A multi-plexed binary TLS-wrapped protocol from the future. SPDY (pronounced speedy) is a replacement for HTTP, and feels like a wrapper for it. SPDY is a packet …

Referrer Blocking is Hard

By Peter Baumgartner on Wednesday, June 27, 2012

One of my recent tasks in Ginger was to ensure that we weren’t leaking referrer URLs when you click on an external link in Ginger. It seemed like an easy task and one that’s probably been solved before. What I …

Running your own Self-Hosted Etherpad Instance

By Marco Louro on Friday, December 18, 2009

Etherpad is an amazing real-time collaborative editor with a very low barrier for entry (no logins, no additional software, etc.). In case you missed it, Etherpad was acquired by Google and after a community uproar decided to release their code …

Easy Fabric Deployment, Part 2: Multiple Committers and the Dreaded Umask

By Peter Baumgartner on Wednesday, October 7, 2009

In part 1, we showed how we use Fabric to update and deploy Django sites to our development server with a single command. This works great when you only have one developer pushing changes to the server, but what happens …

Easy Fabric Deployment, Part 1: Git/Mercurial and SSH

By Peter Baumgartner on Tuesday, September 22, 2009

We’re firm believers in the practices described by the Continuous Integration method of software engineering. Among those are: Maintain a code repository Automate the build Automate deployment We use git for our code repositories and Fabric to automate our build/deployment …

Using Django Inside the Tornado Web Server

By Yann Malet on Tuesday, September 15, 2009

Inspired by Eric Florenzano’s talk, Using Django in Non-Standard Ways (slides in PDF) at DjangoCon and the announcement of Tornado (tornadoweb.org), I decided to try building a small application using the Django Form library and Django ORM inside Tornado. The …

Highlighting Named Anchors with jQuery

By Peter Baumgartner on Friday, April 17, 2009

I’ve always disliked the way named anchors (<a href="#name">...</a>) behave in browsers. It jumps your viewport to a different part of the page, but it’s rarely obvious which section you have landed on. If the page is long enough, the …