Security tab for the properties of files or folders in Windows XP Professional is the important functionality that enable administrators and users to define security permissions and rights for particular user or group to the computer resources. By default, Windows XP Professional follows recommended setting to enable the use of simple file sharing that hide the Security tab, leaving you with only General, Sharing, Web Sharing & Customize tabs as in the Simple File Sharing UI.
So to see and unhide the Security tab, just use the following steps:
Launch Windows Explorer or My Computer.
Click on the Tools at the menu bar, then click on Folder Options.
Click on View tab.
In the Advanced Settings section at the bottom of the list, uncheck and unselect (clear the tick) on the “Use simple file sharing (Recommended)” check box.
Click OK.
Security tab is available only to Administrator or users with administrative rights. So make sure you login as one. And security can only be set in an NTFS partition. If you’re still having problem to reveal or display the Security tab on files or folder properties, check out the following registry hack and set the value to 0 or simply delete the key:
Hive: HKEY_CURRENT_USER
Key: Software\Microsoft\windows\CurrentVersion\Policies\Explorer
Name: Nosecuritytab
Type: REG_DWORD
Value: 1
If you’re using a Windows XP Professional system that is installed in a Workgroup, the Security tab is also hidden by default because in Windows XP Home Edition and Windows XP Professional, guests are forced to log on to a workgroup.
Thursday, November 12, 2009
Thursday, November 5, 2009
iTracker - .Net Inventory Tracker Starter Kit - ASP.NET website
This software helps track Vendors and Products and is easily extendible to nearly any scenario. It is 100% free to reuse. It's designed around Visual Studio 2008 and Asp.Net 3.5. Download the project here.
TheBeerHouse: CMS & E-commerce Site Starter Kit - Free ASP.NET website
TheBeerHouse is a website developed with Microsoft's MVC Framework which includes a number of features and modules that you expect from a typical CMS / e-commerce website, such as:
In building the site features listed above, you'll learn these new features available to you in the MVC Framework:
Links
Note - Selling downloadable products
TheBeerHouse does not support selling downloadable products, as that needs a number of very specific features such as tracking and limiting downloads, delivering serial codes, handling discount coupons, and more. However, I've released a separate service that does just this: byteCommerce
Please take a look at it, it's probably the most convenient service of this type you can find around!
- Membership system with registration, login, profile setup and complete administration.
- Content management system for publishing and syndicating articles and photos, with support for categories, comments, rating and profile-based personalization.
- Opinion polls with support for multiple active polls and archived polls.
- Mailing lists with support for HTML and plain-text newsletters, background transmission and asynchronous processing.
- Forums with support for multiple categories, custom pagination, avatars, signatures, moderation, and complete administration.
- E-commerce store with support for real-time credit card processing, with support for multiple categories, percentage discounts, zoomable pictures, availability display and more.
- Localization.
In building the site features listed above, you'll learn these new features available to you in the MVC Framework:
- Concept of Model View Controller
- Creating RESTful URLs
- Leveraging jQuery to make a lean and scalable website that incorporates AJAX
- Using Membership & Profile modules in the MVC Framework
- Incorporating LINQ to SQL to generate your data access layer
- Use of inline C# code inside of your markup
Links
Note - Selling downloadable products
TheBeerHouse does not support selling downloadable products, as that needs a number of very specific features such as tracking and limiting downloads, delivering serial codes, handling discount coupons, and more. However, I've released a separate service that does just this: byteCommerce
Please take a look at it, it's probably the most convenient service of this type you can find around!
ScrewTurn Wiki - Free ASP.NET Wiki Software
ScrewTurn Wiki allows you to create, manage and share wikis. A wiki is a collaboratively-edited, information-centered website: the most famous is Wikipedia.
ScrewTurn Wiki is based on Microsoft ASP.NET 3.5, meaning that you need a Windows operating system to run it, such as Windows Server 2003 or Windows Server 2008. Desktop operating systems are supported by ScrewTurn Wiki Desktop Edition.
ScrewTurn Wiki can be extended and customized with plugins and themes. It can store data using a simple, built-in file-system provider or, if you need performance and scalability, it can use SQL Server or MySQL*. If you use Active Directory, you can integrate with that too*.
ScrewTurn Wiki is free and open source (GPLv2), meaning that you can use and modify it without limitations. In case GPLv2 is inadequate for your needs, we also offer commercial licenses.
ScrewTurn Wiki - Downloads are available here
ScrewTurn Wiki is based on Microsoft ASP.NET 3.5, meaning that you need a Windows operating system to run it, such as Windows Server 2003 or Windows Server 2008. Desktop operating systems are supported by ScrewTurn Wiki Desktop Edition.
ScrewTurn Wiki can be extended and customized with plugins and themes. It can store data using a simple, built-in file-system provider or, if you need performance and scalability, it can use SQL Server or MySQL*. If you use Active Directory, you can integrate with that too*.
ScrewTurn Wiki is free and open source (GPLv2), meaning that you can use and modify it without limitations. In case GPLv2 is inadequate for your needs, we also offer commercial licenses.
ScrewTurn Wiki - Downloads are available here
How to migrate a website from ASP to ASP.NET?
Microsoft's ASP to ASP.NET Migration Assistant
Do you still have classic ASP applications or websites that you need to migrate to ASP.NET? If so have we got news for you... introducing the ASP to ASP.NET Migration Assistant from Microsoft. Here's what Microsoft has to say about it:
The ASP to ASP.NET Migration Assistant is designed to help you convert ASP pages and applications to ASP.NET. It does not make the conversion process completely automatic, but it will speed up your project by automating some of the steps required for migration.It's still in the very early stages (aka. alpha release) but it's still worth giving it a look. It's got a pretty standard setup routine:
It can be run either from within Visual Studio.NET or from the command line.
I tried it on a few files and it worked pretty well. Like they say it doesn't make the process completely automatic, but it might help.
More Information
Wednesday, October 28, 2009
72 Free Useful Portable Applications You Should Know
Portable applications in general are software and programs you can run independently from a removable drives (like flash/pen drive) without going through the hassle of installing them. They are widely used and have been a favorite approach for professionals of different various industries.
With portable applications, you can leave your laptop behind; plug in the thumb drive in any client machine, run the application without worrying about leaving anything behind. In this post, we attempt to show a collection of useful and free applications you can run independently from thumb drives, sorting by profession by general. You’ll be surprise how many applications you can actually run without installation. Full list after jump.
With portable applications, you can leave your laptop behind; plug in the thumb drive in any client machine, run the application without worrying about leaving anything behind. In this post, we attempt to show a collection of useful and free applications you can run independently from thumb drives, sorting by profession by general. You’ll be surprise how many applications you can actually run without installation. Full list after jump.
30 Stunning Apple Concept Designs
A great wave of excitement is sweeping across all Apple fans as they await for the official launch of the latest amazing Apple product by year end. Yes, it is the eagerly anticipated Apple Tablet, which was reported to be commercially available this coming November. Some of us may have seen the prototype online, and few will disagree that it is yet another beautiful creation by Apple.
In terms of the design and the aesthetic value of IT wares, there is little dispute that Apple create some of the finest and most creative design for their products that few or no other competitors can match. Over the years, product concept designs by hardcore Apple fans began to surface as Apple started to stand out among its competitors. Although these designs are not going to be marketed as actual products, it reflects the deepest wishes of die-hard Apple fans.
Here is a fine compilation of some of the best, coolest and most creative Apple concept designs created by fans. Don’t you just wish these are available in the market?
In terms of the design and the aesthetic value of IT wares, there is little dispute that Apple create some of the finest and most creative design for their products that few or no other competitors can match. Over the years, product concept designs by hardcore Apple fans began to surface as Apple started to stand out among its competitors. Although these designs are not going to be marketed as actual products, it reflects the deepest wishes of die-hard Apple fans.
Here is a fine compilation of some of the best, coolest and most creative Apple concept designs created by fans. Don’t you just wish these are available in the market?
Google Releases Android 2.0
The next version of Google's mobile OS is available to developers.
Google officially released the next version of Android , bringing what appears to be some solid evolution to the mobile platform.New features for Android 2.0 include useful-looking improvements to the way contacts can be accessed. Developers can play with the platform now, but the first device expected to have it is the Motorola Droid, which is slated for release in November.
A Web Spider for Everyone
A startup uses PC idle time to crawl Web pages on demand.
As the quantity of information on the Internet continues to grow, so does the question of how to process it all and make it useful. A startup called 80legs, based in Houston, TX, is hoping that an inexpensive, distributed Web crawling service could help startups mine the Web for information without having to build the giant server farms used by major search engines. The company launched this week at DEMO, a conference in San Diego that showcases new companies.
Web crawlers, or spiders, are software that automatically visit pages on the Internet and can be used to index them and gather bits of information from different pages. Crawlers are used by search engines, for example, to monitor the location of information on the Web. But the scale of the Web means that comprehensive crawling consumes a lot of processing power, which typically means building huge data centers to power the software.
80legs hopes to make this technology more accessible to small companies and individuals by allowing leasing access and letting customers pay only for what they crawl.
Web crawling technology is also crucial for semantic sites and services designed to process natural-language queries. While 80legs expects to see users interested in search and semantic applications, CEO Shion Deysarkar says that those testing the service also included customers with less technical interests. Some market researchers, for example, use 80legs to uncover mentions of specific companies or topics across the Web.
A user can start a Web crawl through 80legs's Web-based interface. The form on the company's site lets them set parameters for the project and upload custom code needed to control how the crawler does its job. For example, a user might want the crawler to find images and check them against a database of copyrighted ones. Deysarkar says his company's crawlers are capable of processing up to two billion pages a day. The company charges $2 for every million pages crawled, plus a fee of three cents per hour of processing used.
Many startups struggle to find the funding needed to build large data centers, but that's not the approach 80legs took to construct its Web crawling infrastructure. The company instead runs its software on a distributed network of personal computers, much like the ones used for projects such as SETI@home. The distributed computing network is put together by Plura Processing, which rents it to 80legs. Plura gets computer users to supply unused processing power in exchange for access to games, donations to charities, and other rewards.
Deysarkar says the approach significantly reduces costs for 80legs, allowing the company to offer its service for far less than would be possible if it used a data center, or even a cloud-computing service such as Amazon Web Services.
Daniel Tunkelang, cofounder of the search company Endeca, based in Cambridge, MA, says that a good Web crawling service could be useful for startups that want to focus on building the search experience rather than on collecting the data. But Tunkelang says the success of 80legs may depend on how easy it is for users to customize the crawl. "The big question is, how adaptive and programmable is the crawl?" he says.
Tunkelang also notes that it's important for a Web crawler to capture as much information as possible. For example, the path a crawler took to arrive at a particular page can provide a search company with useful information about the contents of that page.
A service such as 80legs could also be useful for university researchers. "Crawling at large scale is indeed an expensive hurdle to cross for experimental search projects in academia, which often are lacking large-scale infrastructure," says Kevin Chang, an associate professor of computer science at the University of Illinois at Urbana-Champaign.
Chang thinks the distributed nature of 80legs is "an interesting direction and sounds promising [for lowering] the cost of crawling." At the same time, he agrees that a lot depends on how efficiently the system operates and how effectively users can customize what data they want to process.
80legs plans to launch a market where nontechnical users will be able to purchase applications that can control how a crawler functions. Partner companies will also be able to sell access to applications that control 80legs's crawlers.
Web crawlers, or spiders, are software that automatically visit pages on the Internet and can be used to index them and gather bits of information from different pages. Crawlers are used by search engines, for example, to monitor the location of information on the Web. But the scale of the Web means that comprehensive crawling consumes a lot of processing power, which typically means building huge data centers to power the software.
80legs hopes to make this technology more accessible to small companies and individuals by allowing leasing access and letting customers pay only for what they crawl.
Web crawling technology is also crucial for semantic sites and services designed to process natural-language queries. While 80legs expects to see users interested in search and semantic applications, CEO Shion Deysarkar says that those testing the service also included customers with less technical interests. Some market researchers, for example, use 80legs to uncover mentions of specific companies or topics across the Web.
A user can start a Web crawl through 80legs's Web-based interface. The form on the company's site lets them set parameters for the project and upload custom code needed to control how the crawler does its job. For example, a user might want the crawler to find images and check them against a database of copyrighted ones. Deysarkar says his company's crawlers are capable of processing up to two billion pages a day. The company charges $2 for every million pages crawled, plus a fee of three cents per hour of processing used.
Many startups struggle to find the funding needed to build large data centers, but that's not the approach 80legs took to construct its Web crawling infrastructure. The company instead runs its software on a distributed network of personal computers, much like the ones used for projects such as SETI@home. The distributed computing network is put together by Plura Processing, which rents it to 80legs. Plura gets computer users to supply unused processing power in exchange for access to games, donations to charities, and other rewards.
Deysarkar says the approach significantly reduces costs for 80legs, allowing the company to offer its service for far less than would be possible if it used a data center, or even a cloud-computing service such as Amazon Web Services.
Daniel Tunkelang, cofounder of the search company Endeca, based in Cambridge, MA, says that a good Web crawling service could be useful for startups that want to focus on building the search experience rather than on collecting the data. But Tunkelang says the success of 80legs may depend on how easy it is for users to customize the crawl. "The big question is, how adaptive and programmable is the crawl?" he says.
Tunkelang also notes that it's important for a Web crawler to capture as much information as possible. For example, the path a crawler took to arrive at a particular page can provide a search company with useful information about the contents of that page.
A service such as 80legs could also be useful for university researchers. "Crawling at large scale is indeed an expensive hurdle to cross for experimental search projects in academia, which often are lacking large-scale infrastructure," says Kevin Chang, an associate professor of computer science at the University of Illinois at Urbana-Champaign.
Chang thinks the distributed nature of 80legs is "an interesting direction and sounds promising [for lowering] the cost of crawling." At the same time, he agrees that a lot depends on how efficiently the system operates and how effectively users can customize what data they want to process.
80legs plans to launch a market where nontechnical users will be able to purchase applications that can control how a crawler functions. Partner companies will also be able to sell access to applications that control 80legs's crawlers.
Tracking Devious Phishing Websites
Tracking Devious Phishing Websites
Researchers are monitoring a trick that makes it harder to track and shut down fraudulent websites.
In the world of online fraud, as in real life, the longer miscreants can operate without being caught, the more money they stand to make. And experts have discovered that many phishers--crooks who use fake websites to trick users into giving up valuable personal information--have found a trick that makes it harder for the good guys to block or shut them down.
The trick, dubbed "flux," allows a fake site to change its address on the Internet very quickly, making it hard for defenders to block these sites or warn unsuspecting users. According to research recently published in the journal IEEE Security and Privacy, about 10 percent of phishing sites are using flux to hide themselves.
Flux makes use of the Internet's domain name system, which is responsible for matching a Web address typed into a browser with the server that actually hosts a site. When a user tries to visit a Web page, the domain name system first directs the user to a name server, which maintains an up-to-date list of site addresses. This name server then tells the user's browser where to find the desired site.
Normally, only a small number of machines host copies of a site--just enough to keep it going if something goes wrong. Fraudulent sites, however, are a different story. Phishing sites are often hosted through botnets--thousands of hijacked machines distributed across the globe.
"These machines don't belong to the miscreants, they belong to you and I and our grandmothers," says Minaxi Gupta, an assistant professor of computer science at Indiana University who was involved with the research. Because phishers have access to so many machines, she explains, they can use all of them to move a site around rapidly, throwing defenders off the scent while keeping the website available.
To use flux, a phisher needs to control a domain name, which gives him the right to control its name server. The phisher then sets the name server so that it directs each new visitor to a different set of machines, cycling quickly through the thousands of addresses available within the botnet. Gupta notes that flux is most effective when the phisher shifts the location of the name server as well. If the name server is also moving to different locations on the Internet, it's doubly hard for defenders to pinpoint a central location where the fake website can be shut down. Gupta's group found that 83 percent of phishing sites that used flux this way lasted more than a day before being blocked, compared with a 65 percent survival rate for sites that didn't use flux.
The group also identifies methods for detecting flux and suggests that flux detection should be built into the domain name system itself. Since using the technique likely means a site is fraudulent, the system itself could help protect unsuspecting users from visiting these sites.
Shortening detection time by even a few hours can make a significant difference, says Alper Caglayan, president of Milcord, a company based in Waltham, MA, that collects real-time data about botnets. "If they can operate even a day, they've already made too much money," he adds.
Caglayan notes that there are some legitimate ways to use flux--for example, to deliver multimedia content efficiently--but says that the way a botnet uses flux should look different. For example, a botnet's machines are scattered around the world in a pattern that wouldn't make sense for a legitimate business.
Some experts believe that a multipronged approach is needed to stop phishing sites. Caglayan's company provides a service that helps Internet service providers and other large network administrators find and shut down infected machines within their networks.
Some Web browsers also use blacklists to warn users away from fraudulent sites. But tricks like flux make it almost impossible for those blacklists to stay current enough to be useful. Caglayan expects that, in the future, browsers will need to build in systems that can detect fraud on their own.
Detecting flux will only help people who are using blocking services of some kind, says Manoj Srivastava, chief technical officer of Cyveillance, a security company based in Arlington, VA. "To effectively deal with an attack involving fast flux, it is necessary to take the domain off the Internet, and that requires working with either the registrar or registry of that domain," he says. This can be hard because some domains are located in countries with loose regulations for Internet fraud. Simpler obstacles such as a language barrier can also leave a fraudulent site in operation for a longer period of time.
Gupta says that, as with most Internet crime, flux is a just one component in a larger game of cat and mouse. "You can't win this game," she says. "You just have to continually detect their means and adjust to them."
The trick, dubbed "flux," allows a fake site to change its address on the Internet very quickly, making it hard for defenders to block these sites or warn unsuspecting users. According to research recently published in the journal IEEE Security and Privacy, about 10 percent of phishing sites are using flux to hide themselves.
Flux makes use of the Internet's domain name system, which is responsible for matching a Web address typed into a browser with the server that actually hosts a site. When a user tries to visit a Web page, the domain name system first directs the user to a name server, which maintains an up-to-date list of site addresses. This name server then tells the user's browser where to find the desired site.
Normally, only a small number of machines host copies of a site--just enough to keep it going if something goes wrong. Fraudulent sites, however, are a different story. Phishing sites are often hosted through botnets--thousands of hijacked machines distributed across the globe.
"These machines don't belong to the miscreants, they belong to you and I and our grandmothers," says Minaxi Gupta, an assistant professor of computer science at Indiana University who was involved with the research. Because phishers have access to so many machines, she explains, they can use all of them to move a site around rapidly, throwing defenders off the scent while keeping the website available.
To use flux, a phisher needs to control a domain name, which gives him the right to control its name server. The phisher then sets the name server so that it directs each new visitor to a different set of machines, cycling quickly through the thousands of addresses available within the botnet. Gupta notes that flux is most effective when the phisher shifts the location of the name server as well. If the name server is also moving to different locations on the Internet, it's doubly hard for defenders to pinpoint a central location where the fake website can be shut down. Gupta's group found that 83 percent of phishing sites that used flux this way lasted more than a day before being blocked, compared with a 65 percent survival rate for sites that didn't use flux.
The group also identifies methods for detecting flux and suggests that flux detection should be built into the domain name system itself. Since using the technique likely means a site is fraudulent, the system itself could help protect unsuspecting users from visiting these sites.
Shortening detection time by even a few hours can make a significant difference, says Alper Caglayan, president of Milcord, a company based in Waltham, MA, that collects real-time data about botnets. "If they can operate even a day, they've already made too much money," he adds.
Caglayan notes that there are some legitimate ways to use flux--for example, to deliver multimedia content efficiently--but says that the way a botnet uses flux should look different. For example, a botnet's machines are scattered around the world in a pattern that wouldn't make sense for a legitimate business.
Some experts believe that a multipronged approach is needed to stop phishing sites. Caglayan's company provides a service that helps Internet service providers and other large network administrators find and shut down infected machines within their networks.
Some Web browsers also use blacklists to warn users away from fraudulent sites. But tricks like flux make it almost impossible for those blacklists to stay current enough to be useful. Caglayan expects that, in the future, browsers will need to build in systems that can detect fraud on their own.
Detecting flux will only help people who are using blocking services of some kind, says Manoj Srivastava, chief technical officer of Cyveillance, a security company based in Arlington, VA. "To effectively deal with an attack involving fast flux, it is necessary to take the domain off the Internet, and that requires working with either the registrar or registry of that domain," he says. This can be hard because some domains are located in countries with loose regulations for Internet fraud. Simpler obstacles such as a language barrier can also leave a fraudulent site in operation for a longer period of time.
Gupta says that, as with most Internet crime, flux is a just one component in a larger game of cat and mouse. "You can't win this game," she says. "You just have to continually detect their means and adjust to them."
Subscribe to:
Posts (Atom)
