The document discusses threat modeling and how most security measures are implicit rather than explicit. It recommends making threat modeling explicit by following Schneier's Security Wheel to evaluate each security measure: assessing assets, risks, how the measure mitigates risks, new risks it creates, and costs/trade-offs. The speaker argues for bringing all security measures into an explicit threat model, getting diverse input, ensuring each measure addresses credible threats, regularly reviewing the model, and removing outdated measures. The goal is to eliminate "security theater" and make security evaluation everybody's responsibility.
This slide deck presentation discusses tips for successful public speaking. It emphasizes practicing presentations aloud using index cards held in your non-dominant hand while standing upright. Repeated practice is key to delivering presentations that engage audiences and get your important messages across.
G so c_and_commitfests_and_pointy_hair_oh_my_sfpug_20131008David Fetter
The document discusses two Commitfests which are events where contributors propose and review patches for a project. The first Commitfest in 2010 had 52 total proposals but many were not properly followed up on due to laziness and impatience. The second Commitfest in 2011 had more success by using checklists, collaborators, and a separate IRC channel. It also discusses challenges with database triggers and the need to see before and after rows to properly debug issues. Overall it promotes practices like diligence, patience, and collaboration for successful events.
Harry S. Truman was born in 1884 in Missouri. He had Scottish and English ancestry and was a Baptist. Truman served as a Senator and Vice President before becoming President in 1945 after Franklin D. Roosevelt's death. As President, Truman oversaw the end of World War II, established the United Nations and NATO, and proposed policies aimed at containing communism abroad. The post-war period saw a baby boom, economic prosperity, and greater access to higher education thanks to the GI Bill.
The document discusses different SQL grouping functions - CUBE, ROLLUP, and GROUPING SETS - that can be used to generate summary reports from sales data. It shows examples using each function and the results they produce. CUBE returns all possible combinations of groups, including subtotals and totals. ROLLUP moves from specific to general along a hierarchy. GROUPING SETS allows specifying precise groups to include without unwanted combinations. The examples demonstrate how these functions can be used to analyze and report on quarterly and annual sales totals by employee.
The document discusses threat modeling and how most security measures are implicit rather than explicit. It recommends making threat modeling explicit by following Schneier's Security Wheel to evaluate each security measure: assessing assets, risks, how the measure mitigates risks, new risks it creates, and costs/trade-offs. The speaker argues for bringing all security measures into an explicit threat model, getting diverse input, ensuring each measure addresses credible threats, regularly reviewing the model, and removing outdated measures. The goal is to eliminate "security theater" and make security evaluation everybody's responsibility.
This slide deck presentation discusses tips for successful public speaking. It emphasizes practicing presentations aloud using index cards held in your non-dominant hand while standing upright. Repeated practice is key to delivering presentations that engage audiences and get your important messages across.
G so c_and_commitfests_and_pointy_hair_oh_my_sfpug_20131008David Fetter
The document discusses two Commitfests which are events where contributors propose and review patches for a project. The first Commitfest in 2010 had 52 total proposals but many were not properly followed up on due to laziness and impatience. The second Commitfest in 2011 had more success by using checklists, collaborators, and a separate IRC channel. It also discusses challenges with database triggers and the need to see before and after rows to properly debug issues. Overall it promotes practices like diligence, patience, and collaboration for successful events.
Harry S. Truman was born in 1884 in Missouri. He had Scottish and English ancestry and was a Baptist. Truman served as a Senator and Vice President before becoming President in 1945 after Franklin D. Roosevelt's death. As President, Truman oversaw the end of World War II, established the United Nations and NATO, and proposed policies aimed at containing communism abroad. The post-war period saw a baby boom, economic prosperity, and greater access to higher education thanks to the GI Bill.
The document discusses different SQL grouping functions - CUBE, ROLLUP, and GROUPING SETS - that can be used to generate summary reports from sales data. It shows examples using each function and the results they produce. CUBE returns all possible combinations of groups, including subtotals and totals. ROLLUP moves from specific to general along a hierarchy. GROUPING SETS allows specifying precise groups to include without unwanted combinations. The examples demonstrate how these functions can be used to analyze and report on quarterly and annual sales totals by employee.
Ct es past_present_future_nycpgday_20130322David Fetter
This document discusses common table expressions (CTEs) in three parts: past, present, and future. In the past section, it describes how CTEs were initially added to PostgreSQL to support WITH clauses and recursion. Currently, CTEs allow data modification commands like INSERT, UPDATE, and DELETE within the WITH clause. The future section envisions expanding CTEs further to support returning rows from data modification commands and using CTEs in FROM/USING clauses. Realizing this future will require addressing open questions around syntax and capabilities.
This document discusses writeable common table expressions (CTEs) in SQL, which allow inserts, updates, deletes in the WITH clause of a CTE. This is presented as a revolution for SQL that makes it Turing complete. Examples are given of using CTEs for tasks like partition management, query clustering to minimize I/O, and transaction management. Future directions discussed include adding DCL and DDL commands to CTEs.
Synergy Consulting Group helps companies find new employee talent by leveraging their network of qualified professionals, with the goal of achieving results greater than what companies could achieve alone. They take the time to find the right person for each hiring need and invest in their clients' success by introducing them to candidates from their constantly growing talent pool. Their proven success in matching companies to new hires means clients can be confident Synergy will connect them with the people they need.
The document discusses a database roadmap, including moving to PostgreSQL 9.3 for its new foreign data wrapper (FDW) feature allowing databases to communicate, using Slony for replication, implementing backups, adding audit trails, partitioning tables across databases, and supporting foreign tables from sources like CSV, S3 and other databases. It acknowledges uncertainties and seeks input on future directions.
The document discusses view triggers in PostgreSQL. It describes how view triggers were implemented previously using rules and shadow tables, which had performance and concurrency issues. It then explains that view triggers are now implemented directly using trigger functions and triggers, avoiding the problems of the previous approach. This provides an easier way to execute code in response to INSERT, UPDATE, and DELETE operations on a view.
Presentación Analisis de Resultados PSU 2008mauxmatta
Este documento resume los mejores puntajes obtenidos por estudiantes en las pruebas de lenguaje, matemática, historia y ciencias de la PSU 2008. En cada asignatura se lista el nombre del estudiante y su puntaje, destacando a aquellos que obtuvieron puntajes sobre 700.
The document discusses threat modeling and how it can be revolutionized. It describes Schneier's Security Wheel, which is a framework for evaluating security measures based on the assets being protected, risks to those assets, how well measures mitigate risks, new risks they create, and costs/trade-offs. The document argues for making threat modeling more explicit by ensuring every security measure addresses credible threats, reviewing the threat model regularly with diverse audiences, and removing measures that no longer fit after repeating the process. The goal is to involve everyone in security and avoid "security theater" that does not address real risks.
Intergalactic data speak_highload++_20131028David Fetter
The document discusses PostgreSQL's support for accessing remote data sources using SQL/MED. It describes how PostgreSQL has evolved from only supporting reads of remote data in early versions to now supporting both reads and writes in version 9.3 using various foreign data wrappers. These wrappers allow querying and manipulating data from databases like Oracle and MySQL, NoSQL sources like CouchDB and Redis, and other sources such as files, Twitter, and S3. The capabilities are expected to continue expanding in the future with full SQL/MED compliance and additional introspection features.
Federation with foreign_data_wrappers_pg_conf_eu_20131031David Fetter
The document discusses foreign data wrappers in PostgreSQL, which allow querying external data sources like Oracle, MySQL, NoSQL databases and files. It provides an overview of the history and current state of foreign data wrappers in PostgreSQL, including new commands introduced in PostgreSQL 9.3 to support writes. It also outlines potential future improvements like better schema introspection and increased SQL/MED compliance.
This document discusses SQL/MED (SQL Management of External Data) as an approach to radically reduce network traffic when accessing universal data. It proposes pushing SQL predicates, joins, and aggregates to remote data sources rather than pulling all the data and processing it locally. The timeline outlines SQL/MED's inclusion in standards and PostgreSQL's ongoing implementation, with goals of adding features like write interfaces, join pushdown, and aggregate pushdown over the next few years. Resources are provided for further information on SQL/MED and PostgreSQL's support for it.
PL/Parrot San Francisco Perl Mongers 2010/05/25David Fetter
Parrot is a virtual machine for dynamic languages that is register-based, pluggable, interoperable, and dynamic. It allows writing PostgreSQL procedural languages (PLs) once in a high-level language like Perl or Python and calling them from any PL, avoiding duplicating code. Current PLs built on Parrot include PL/PIR and PL/PIRU. Future work includes improving data type support, adding sandboxing and calling high-level languages, and increasing testing.
The document discusses trees and graphs from both a mathematical and database modeling perspective. It describes trees as a type of graph that is directed, connected, acyclic and has a maximum indegree of 1. The document then provides SQL examples for representing graphs and trees in databases, including enforcing constraints to ensure graphs do not contain cycles and trees have a single non-head node. Functions and triggers are demonstrated for validating these constraints when data is inserted, updated or deleted from the tables.
Ct es past_present_future_nycpgday_20130322David Fetter
This document discusses common table expressions (CTEs) in three parts: past, present, and future. In the past section, it describes how CTEs were initially added to PostgreSQL to support WITH clauses and recursion. Currently, CTEs allow data modification commands like INSERT, UPDATE, and DELETE within the WITH clause. The future section envisions expanding CTEs further to support returning rows from data modification commands and using CTEs in FROM/USING clauses. Realizing this future will require addressing open questions around syntax and capabilities.
This document discusses writeable common table expressions (CTEs) in SQL, which allow inserts, updates, deletes in the WITH clause of a CTE. This is presented as a revolution for SQL that makes it Turing complete. Examples are given of using CTEs for tasks like partition management, query clustering to minimize I/O, and transaction management. Future directions discussed include adding DCL and DDL commands to CTEs.
Synergy Consulting Group helps companies find new employee talent by leveraging their network of qualified professionals, with the goal of achieving results greater than what companies could achieve alone. They take the time to find the right person for each hiring need and invest in their clients' success by introducing them to candidates from their constantly growing talent pool. Their proven success in matching companies to new hires means clients can be confident Synergy will connect them with the people they need.
The document discusses a database roadmap, including moving to PostgreSQL 9.3 for its new foreign data wrapper (FDW) feature allowing databases to communicate, using Slony for replication, implementing backups, adding audit trails, partitioning tables across databases, and supporting foreign tables from sources like CSV, S3 and other databases. It acknowledges uncertainties and seeks input on future directions.
The document discusses view triggers in PostgreSQL. It describes how view triggers were implemented previously using rules and shadow tables, which had performance and concurrency issues. It then explains that view triggers are now implemented directly using trigger functions and triggers, avoiding the problems of the previous approach. This provides an easier way to execute code in response to INSERT, UPDATE, and DELETE operations on a view.
Presentación Analisis de Resultados PSU 2008mauxmatta
Este documento resume los mejores puntajes obtenidos por estudiantes en las pruebas de lenguaje, matemática, historia y ciencias de la PSU 2008. En cada asignatura se lista el nombre del estudiante y su puntaje, destacando a aquellos que obtuvieron puntajes sobre 700.
The document discusses threat modeling and how it can be revolutionized. It describes Schneier's Security Wheel, which is a framework for evaluating security measures based on the assets being protected, risks to those assets, how well measures mitigate risks, new risks they create, and costs/trade-offs. The document argues for making threat modeling more explicit by ensuring every security measure addresses credible threats, reviewing the threat model regularly with diverse audiences, and removing measures that no longer fit after repeating the process. The goal is to involve everyone in security and avoid "security theater" that does not address real risks.
Intergalactic data speak_highload++_20131028David Fetter
The document discusses PostgreSQL's support for accessing remote data sources using SQL/MED. It describes how PostgreSQL has evolved from only supporting reads of remote data in early versions to now supporting both reads and writes in version 9.3 using various foreign data wrappers. These wrappers allow querying and manipulating data from databases like Oracle and MySQL, NoSQL sources like CouchDB and Redis, and other sources such as files, Twitter, and S3. The capabilities are expected to continue expanding in the future with full SQL/MED compliance and additional introspection features.
Federation with foreign_data_wrappers_pg_conf_eu_20131031David Fetter
The document discusses foreign data wrappers in PostgreSQL, which allow querying external data sources like Oracle, MySQL, NoSQL databases and files. It provides an overview of the history and current state of foreign data wrappers in PostgreSQL, including new commands introduced in PostgreSQL 9.3 to support writes. It also outlines potential future improvements like better schema introspection and increased SQL/MED compliance.
This document discusses SQL/MED (SQL Management of External Data) as an approach to radically reduce network traffic when accessing universal data. It proposes pushing SQL predicates, joins, and aggregates to remote data sources rather than pulling all the data and processing it locally. The timeline outlines SQL/MED's inclusion in standards and PostgreSQL's ongoing implementation, with goals of adding features like write interfaces, join pushdown, and aggregate pushdown over the next few years. Resources are provided for further information on SQL/MED and PostgreSQL's support for it.
PL/Parrot San Francisco Perl Mongers 2010/05/25David Fetter
Parrot is a virtual machine for dynamic languages that is register-based, pluggable, interoperable, and dynamic. It allows writing PostgreSQL procedural languages (PLs) once in a high-level language like Perl or Python and calling them from any PL, avoiding duplicating code. Current PLs built on Parrot include PL/PIR and PL/PIRU. Future work includes improving data type support, adding sandboxing and calling high-level languages, and increasing testing.
The document discusses trees and graphs from both a mathematical and database modeling perspective. It describes trees as a type of graph that is directed, connected, acyclic and has a maximum indegree of 1. The document then provides SQL examples for representing graphs and trees in databases, including enforcing constraints to ensure graphs do not contain cycles and trees have a single non-head node. Functions and triggers are demonstrated for validating these constraints when data is inserted, updated or deleted from the tables.