the Apache way
•
0 likes•48 views
How Apache Foundation works ? How can Apache manage a community of thousands of people ? Some info about a successful community.
Report
Share
Report
Share
Download to read offline
Recommended
Open source software for IoT –
The devil’s in the details
Open source software is growing, especially in IoT, but there is little understanding of license obligations. This presentation provides best practices for using open source software safely and effectively. It discusses open source licenses including GPL, LGPL, MIT and their terms. It emphasizes the importance of compliance to avoid liability issues seen in court cases. Developers must understand which licenses are acceptable and how to identify and address license requirements for all code used.
Open data vs open api
This document discusses the differences between open data and open APIs. It notes that while open data typically uses Creative Commons licenses, there is no single licensing model for APIs as they involve multiple components like documentation, data formats, and source code. These components may each have their own licenses, such as open source licenses for software. The document provides examples of early RESTful APIs that published open APIs for developers and discusses factors to consider when providing or using APIs, such as the licenses for different components and how they fit with one's business model.
Open Source at Scale: the Apache Software Foundation (2018)
The Apache Software Foundation (ASF) provides open source software for the public good by supporting many software project communities. It operates as a neutral space independent from corporate influence where projects can thrive under the Apache License 2.0. The ASF oversees around 300 top-level projects at various stages, providing services like documentation, marketing, packaging, and technical support to help projects. It relies on a large volunteer community and small budget to sustain its open governance model and infrastructure for open source projects.
Open Source in the Enterprise: Compliance and Risk Management
new compliance obligations and risk management issues arising from the adoption of open source software in the Enterprise
Craig The apache Way
This talk is introduce by Craig L Russell, who is the Apache Software Foundation Chairman, at Apache Event at Tsinghua University in China.
About the Event:
The open source ecosystem plays more and more important role in the world. Open source software is widely used in operating systems, cloud computing, big data, artificial intelligence, and industrial Internet. Many companies have gradually increased their participation in the open source community. Developers with open source experience are increasingly valued and favored by large enterprises. The Apache Software Foundation is one of the most important open source communities, contributing a large number of valuable open source software and communities to the world.
The invited guests of this lecture are all from ASF community, including the chairman of the Apache Software Foundation, three Apache members, Top 5 Apache code committers (according to Apache annual report), the first Committer in the Hadoop project in China, several Apache project mentors or VPs, and many Apache Committers. They will tell you what the open source culture is, how to join the Apache open source community, and the Apache Way.
Web Server And Database Server
The document provides information about web servers, database servers, and popular open source software used for each. It discusses what a web server and database server are, how they work, examples of common software like Apache and MySQL, and steps to install and configure Apache and MySQL on Ubuntu.
Informatica Command Line Statements
This document provides a reference for the command line programs that are used to interact with Informatica PowerCenter. It includes copyright information for the various software components, a table of contents, and describes how to use the command line programs. The document is published by Informatica and provides technical documentation for administrators of the PowerCenter platform.
(ARC346) Scaling To 25 Billion Daily Requests Within 3 Months On AWS
What if you were told that within three months, you had to scale your existing platform from 1,000 req/sec (requests per second) to handle 300,000 req/sec with an average latency of 25 milliseconds? And that you had to accomplish this with a tight budget, expand globally, and keep the project confidential until officially announced by well-known global mobile device manufacturers? That’s what exactly happened to us. This session explains how The Weather Company partnered with AWS to scale our data distribution platform to prepare for unpredictable global demand. We cover the many challenges that we faced as we worked on architecture design, technology and tools selection, load testing, deployment and monitoring, and how we solved these challenges using AWS.
Recommended
Open source software for IoT –
The devil’s in the details
Open source software is growing, especially in IoT, but there is little understanding of license obligations. This presentation provides best practices for using open source software safely and effectively. It discusses open source licenses including GPL, LGPL, MIT and their terms. It emphasizes the importance of compliance to avoid liability issues seen in court cases. Developers must understand which licenses are acceptable and how to identify and address license requirements for all code used.
Open data vs open api
This document discusses the differences between open data and open APIs. It notes that while open data typically uses Creative Commons licenses, there is no single licensing model for APIs as they involve multiple components like documentation, data formats, and source code. These components may each have their own licenses, such as open source licenses for software. The document provides examples of early RESTful APIs that published open APIs for developers and discusses factors to consider when providing or using APIs, such as the licenses for different components and how they fit with one's business model.
Open Source at Scale: the Apache Software Foundation (2018)
The Apache Software Foundation (ASF) provides open source software for the public good by supporting many software project communities. It operates as a neutral space independent from corporate influence where projects can thrive under the Apache License 2.0. The ASF oversees around 300 top-level projects at various stages, providing services like documentation, marketing, packaging, and technical support to help projects. It relies on a large volunteer community and small budget to sustain its open governance model and infrastructure for open source projects.
Open Source in the Enterprise: Compliance and Risk Management
new compliance obligations and risk management issues arising from the adoption of open source software in the Enterprise
Craig The apache Way
This talk is introduce by Craig L Russell, who is the Apache Software Foundation Chairman, at Apache Event at Tsinghua University in China.
About the Event:
The open source ecosystem plays more and more important role in the world. Open source software is widely used in operating systems, cloud computing, big data, artificial intelligence, and industrial Internet. Many companies have gradually increased their participation in the open source community. Developers with open source experience are increasingly valued and favored by large enterprises. The Apache Software Foundation is one of the most important open source communities, contributing a large number of valuable open source software and communities to the world.
The invited guests of this lecture are all from ASF community, including the chairman of the Apache Software Foundation, three Apache members, Top 5 Apache code committers (according to Apache annual report), the first Committer in the Hadoop project in China, several Apache project mentors or VPs, and many Apache Committers. They will tell you what the open source culture is, how to join the Apache open source community, and the Apache Way.
Web Server And Database Server
The document provides information about web servers, database servers, and popular open source software used for each. It discusses what a web server and database server are, how they work, examples of common software like Apache and MySQL, and steps to install and configure Apache and MySQL on Ubuntu.
Informatica Command Line Statements
This document provides a reference for the command line programs that are used to interact with Informatica PowerCenter. It includes copyright information for the various software components, a table of contents, and describes how to use the command line programs. The document is published by Informatica and provides technical documentation for administrators of the PowerCenter platform.
(ARC346) Scaling To 25 Billion Daily Requests Within 3 Months On AWS
What if you were told that within three months, you had to scale your existing platform from 1,000 req/sec (requests per second) to handle 300,000 req/sec with an average latency of 25 milliseconds? And that you had to accomplish this with a tight budget, expand globally, and keep the project confidential until officially announced by well-known global mobile device manufacturers? That’s what exactly happened to us. This session explains how The Weather Company partnered with AWS to scale our data distribution platform to prepare for unpredictable global demand. We cover the many challenges that we faced as we worked on architecture design, technology and tools selection, load testing, deployment and monitoring, and how we solved these challenges using AWS.
Running Successful Open Source Projects
This document provides an overview of running a successful open source project. It discusses what open source is, the benefits it provides, and common misconceptions. It then describes the history and structure of the Apache Software Foundation, how it supports open source projects, and the principles of meritocracy, consensus-based decision making, and collaborative development that guide projects. Successful Apache projects like HTTP Server and Tomcat are discussed as examples.
Managing Open Source Software Supply Chains
Heather Meeker and Michael Herzog discuss the latest trends in open source compliance for supply chain activities: the key legal issues for supply chain management as well as the latest automation tools and projects for open source management.
Agenda
• Legal issues for supply chain management
• Best practices to avoid claims and reduce risk
• Latest automation tools and projects for open source compliance management
Intro to signalR
This presentation introduces ASP.NET SignalR, a library for adding real-time functionality to web applications. SignalR allows for bidirectional communication between server and client via persistent connections. It was explained that SignalR chooses the best network transport based on client capabilities, with WebSockets being the ideal method. The presentation covered the SignalR API, including hubs for high-level communication and persistent connections for lower-level access. A demo of a SignalR chat application was shown to demonstrate its use. Security concerns with SignalR were also briefly discussed.
Getting rid of pain with Heroku @ BrainDev Kyiv
See the whole presentation here:
https://www.youtube.com/watch?time_continue=1&v=jInkHMRuS58
Thomas Vervik has explained to the audience how to get rid of strict distinication between Developers and Maintainance department, heal the pain with maintaining disks, OS patches, manually update the middleware and in generally save your time for amazing evenings with the help of Heroku.
Successful Patterns for running platforms
Modern DevOps practices involve deploying applications to platforms. From basic IaaS to PaaS to serverless functions. But who runs those platforms and how? At Pivotal we build and operate platforms, and we run those platforms on a platform designed to run complex distributed systems called Bosh which was inspired by google borg. Paul will talk through a couple of successful patterns for deploying and operating platforms as well as how to help your business determine which platform[s] are right for them and how to successfully get the business to adopt those platforms.
apidays Hong Kong - Why is API Gateway essential to business, Zhiyuan Ju, API...
apidays Hong Kong 2022 - API-First Digital Transformation & Platform Economy
August 24 & 25, 2022
Why is API Gateway essential to business
Zhiyuan Ju, Head of Global at API7.ai
------------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Deep dive into the API industry with our reports:
https://www.apidays.global/industry-reports/
Subscribe to our global newsletter:
https://apidays.typeform.com/to/i1MPEW
Internet of Things - protocols review (MeetUp Wireless & Networks, Poznań 21....
- The document provides an overview of various Internet of Things (IoT) communication protocols including MQTT, HTTP/REST, and DDS.
- It discusses the key aspects of MQTT including its publish-subscribe model, use of a message broker, lightweight design, and quality of service levels. HTTP/REST is described as using a client-server model with status codes and uniform interfaces.
- The document also compares MQTT and HTTP/REST, noting MQTT is simpler, message-centric, and ideal for low-power IoT devices, while HTTP/REST is more complex, document-centric, and the standard web protocol.
Internship msc cs
The document describes a travel agency management system that offers the following key features:
- Integrated travel agents located directly in companies to make reservations and issue tickets.
- An electronic booking system that is IATA approved along with state-of-the-art technology.
- Dedicated and bilingual staff that provide personalized service and account management for corporate travel needs.
- One-stop shopping for all travel arrangements along with corporate agreements with airlines.
Extending Piwik At R7.com
How we deployed Piwik web analytics system to handle a huge amount of unpredicted traffic, adding some cloud and modern scalability techniques. files:https://github.com/lorieri/piwik-presentation
Apache web-server-architecture
The document discusses the architecture of the Apache web server. It begins with an overview of what a web server and the Apache web server are. It then covers Apache's history and architecture in detail, including its core components, how requests are handled, modules, concurrency model using persistent processes, and configuration. The document provides an in-depth technical summary of the Apache web server architecture.
Serial Data from Arduino to Raspberry Pi to MySQL using CoAP Protocol
This document discusses getting sensor data from an Arduino Uno and sending it to a Raspberry Pi via UART serial communication. It then explains how to run a CoAP server on the Raspberry Pi to make the sensor data available via a GET request. Finally, it describes saving the sensor values from the Arduino in a MySQL database on the Raspberry Pi and accessing the stored data through a web browser.
Managing Software Inventories & Automating Open Source Software Compliance
Stephen Gillespie of Fenwick & West and Michael Herzog of nexB review the most common open source license obligations, highlight the challenges of fast paced component-based software development from a compliance angle and what you can do to better monitor this in your software inventories.
elasticRTC -- how to have your own WebRTC cloud scaling to be billions in min...
This document discusses options for developing a scalable WebRTC media infrastructure, including using a third-party Platform as a Service (PaaS) provider or building your own infrastructure. It describes how to build your own API PaaS using components like Kurento Media Server and cloud services from AWS. The document provides cost comparisons and examples of configuring ElasticRTC, an open-source tool for deploying a scalable and elastic Kurento media server cluster on AWS.
Cytoscape and External Data Analysis Tools
This document summarizes Keiichiro Ono's lab meeting presentation about developing a RESTful API for Cytoscape. The presentation covered the motivation for external tools to programmatically access Cytoscape, the design of a new Cytoscape module that exposes a RESTful API, and a proof-of-concept demo. The goal is to make Cytoscape more accessible for hardcore users to embed in automated workflows from languages like R and Python.
Legal and practical concerns with open source software
Presented by Brooks Kushman and Rogue Wave Software at the Embedded Systems Conference. It provides both legal and practical considerations in developing embedded systems using open source software (OSS). It discusses open source development tools, how to integrate OSS into embedded systems and different OSS licenses, and provide a road map to compliance.
2016 06 - design your api management strategy - axway - Api Management
David Soulalioux, API Gateway pre-sales engineer at Axway illustrated, among others, a concrete use case of cloud API management at a worldwide energy industry leader. The presentation depicted the exposition of customer’s “Fuel Market” intranets website existing APIs to the outside world. This integration outlined the added value of the API Gateway as authentication layer, security and Quality Of Service (QoS) enforcement point. Also, the retained cloud infrastructure enabled for a scalable and reliable solution, allowing developers to focus on services instead of worrying about the infrastructure.
The Emergence of Choice in the .NET Ecosystem
The slides for a talk I delivered at the Triangle area .NET group about the emergency of choice in .NET and highlighting 10 specific open source tools.
Open source software governance with DejaCode
Dennis Clark, Product Manager, and Pierre Lapointe, Customer Care Manager, present DejaCode, nexB's product for Software Component License Management, including:
- How to implement effective policies for OSS license and component usage,
- How to set up efficient approval workflows for OSS license and component usage, and
- How to automate OSS Attribution Notice generation.
HTTP Authorization using OPA
Business applications of today stress a lot on authorization and policy handling. However, authorization and policy are complex to achieve in cloud-native environments. Security & compliance problems need to be addressed early on in the development & deployment cycles. Software & feature releases happen in minutes. To support this, the outdated methods of writing policies via PDFs and emails are not going to work.
This is where Open Policy Agent came into force so that security & compliance can be enabled by machines and the software can adhere to all necessary requirements. It’s suitable for cloud-native environments and is widely used for Kubernetes admission control spanning major cloud providers. OPA is also used for on-prem deployments clubbed with HTTP API authorization, remote access policy, and data filtering.
In this webinar, our expert will walk you through HTTP Authorization using OPA along with service mesh and how it aids inter-service communication. Book your spot now and don’t miss.
Subscribe to the channel if you would like to learn more such insights: http://bit.ly/2TksG9H
Open Source - Not just for IT anymore
Presented at the Open Repositories Conference, this presentation describes the Lessons Learned in the Open Source Movement that can be used outside of the traditional IT environment.
SpamAssassin 4.0 new features
SpamAssassin 4.0 is going to be released soon.
In this version there will be a lot of new features useful to catch new types of spam messages and a lot of improvements.
ACME and mod_md: tls certificates made easy
ACME is a protocol for automating certificate lifecycle management communications between Certificate Authorities (CAs) and a company’s web servers.
The most known implementation is the one made by Let’s Encrypt non-profit CA.
There are many other implementation and one of the most attractive and easy to use is Apache httpd mod_md.
During the talk I will explain why ACME protocol is important to secure web sites and how mod_md could ease the transition to a more secure www.
More Related Content
Similar to the Apache way
Running Successful Open Source Projects
This document provides an overview of running a successful open source project. It discusses what open source is, the benefits it provides, and common misconceptions. It then describes the history and structure of the Apache Software Foundation, how it supports open source projects, and the principles of meritocracy, consensus-based decision making, and collaborative development that guide projects. Successful Apache projects like HTTP Server and Tomcat are discussed as examples.
Managing Open Source Software Supply Chains
Heather Meeker and Michael Herzog discuss the latest trends in open source compliance for supply chain activities: the key legal issues for supply chain management as well as the latest automation tools and projects for open source management.
Agenda
• Legal issues for supply chain management
• Best practices to avoid claims and reduce risk
• Latest automation tools and projects for open source compliance management
Intro to signalR
This presentation introduces ASP.NET SignalR, a library for adding real-time functionality to web applications. SignalR allows for bidirectional communication between server and client via persistent connections. It was explained that SignalR chooses the best network transport based on client capabilities, with WebSockets being the ideal method. The presentation covered the SignalR API, including hubs for high-level communication and persistent connections for lower-level access. A demo of a SignalR chat application was shown to demonstrate its use. Security concerns with SignalR were also briefly discussed.
Getting rid of pain with Heroku @ BrainDev Kyiv
See the whole presentation here:
https://www.youtube.com/watch?time_continue=1&v=jInkHMRuS58
Thomas Vervik has explained to the audience how to get rid of strict distinication between Developers and Maintainance department, heal the pain with maintaining disks, OS patches, manually update the middleware and in generally save your time for amazing evenings with the help of Heroku.
Successful Patterns for running platforms
Modern DevOps practices involve deploying applications to platforms. From basic IaaS to PaaS to serverless functions. But who runs those platforms and how? At Pivotal we build and operate platforms, and we run those platforms on a platform designed to run complex distributed systems called Bosh which was inspired by google borg. Paul will talk through a couple of successful patterns for deploying and operating platforms as well as how to help your business determine which platform[s] are right for them and how to successfully get the business to adopt those platforms.
apidays Hong Kong - Why is API Gateway essential to business, Zhiyuan Ju, API...
apidays Hong Kong 2022 - API-First Digital Transformation & Platform Economy
August 24 & 25, 2022
Why is API Gateway essential to business
Zhiyuan Ju, Head of Global at API7.ai
------------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Deep dive into the API industry with our reports:
https://www.apidays.global/industry-reports/
Subscribe to our global newsletter:
https://apidays.typeform.com/to/i1MPEW
Internet of Things - protocols review (MeetUp Wireless & Networks, Poznań 21....
- The document provides an overview of various Internet of Things (IoT) communication protocols including MQTT, HTTP/REST, and DDS.
- It discusses the key aspects of MQTT including its publish-subscribe model, use of a message broker, lightweight design, and quality of service levels. HTTP/REST is described as using a client-server model with status codes and uniform interfaces.
- The document also compares MQTT and HTTP/REST, noting MQTT is simpler, message-centric, and ideal for low-power IoT devices, while HTTP/REST is more complex, document-centric, and the standard web protocol.
Internship msc cs
The document describes a travel agency management system that offers the following key features:
- Integrated travel agents located directly in companies to make reservations and issue tickets.
- An electronic booking system that is IATA approved along with state-of-the-art technology.
- Dedicated and bilingual staff that provide personalized service and account management for corporate travel needs.
- One-stop shopping for all travel arrangements along with corporate agreements with airlines.
Extending Piwik At R7.com
How we deployed Piwik web analytics system to handle a huge amount of unpredicted traffic, adding some cloud and modern scalability techniques. files:https://github.com/lorieri/piwik-presentation
Apache web-server-architecture
The document discusses the architecture of the Apache web server. It begins with an overview of what a web server and the Apache web server are. It then covers Apache's history and architecture in detail, including its core components, how requests are handled, modules, concurrency model using persistent processes, and configuration. The document provides an in-depth technical summary of the Apache web server architecture.
Serial Data from Arduino to Raspberry Pi to MySQL using CoAP Protocol
This document discusses getting sensor data from an Arduino Uno and sending it to a Raspberry Pi via UART serial communication. It then explains how to run a CoAP server on the Raspberry Pi to make the sensor data available via a GET request. Finally, it describes saving the sensor values from the Arduino in a MySQL database on the Raspberry Pi and accessing the stored data through a web browser.
Managing Software Inventories & Automating Open Source Software Compliance
Stephen Gillespie of Fenwick & West and Michael Herzog of nexB review the most common open source license obligations, highlight the challenges of fast paced component-based software development from a compliance angle and what you can do to better monitor this in your software inventories.
elasticRTC -- how to have your own WebRTC cloud scaling to be billions in min...
This document discusses options for developing a scalable WebRTC media infrastructure, including using a third-party Platform as a Service (PaaS) provider or building your own infrastructure. It describes how to build your own API PaaS using components like Kurento Media Server and cloud services from AWS. The document provides cost comparisons and examples of configuring ElasticRTC, an open-source tool for deploying a scalable and elastic Kurento media server cluster on AWS.
Cytoscape and External Data Analysis Tools
This document summarizes Keiichiro Ono's lab meeting presentation about developing a RESTful API for Cytoscape. The presentation covered the motivation for external tools to programmatically access Cytoscape, the design of a new Cytoscape module that exposes a RESTful API, and a proof-of-concept demo. The goal is to make Cytoscape more accessible for hardcore users to embed in automated workflows from languages like R and Python.
Legal and practical concerns with open source software
Presented by Brooks Kushman and Rogue Wave Software at the Embedded Systems Conference. It provides both legal and practical considerations in developing embedded systems using open source software (OSS). It discusses open source development tools, how to integrate OSS into embedded systems and different OSS licenses, and provide a road map to compliance.
2016 06 - design your api management strategy - axway - Api Management
David Soulalioux, API Gateway pre-sales engineer at Axway illustrated, among others, a concrete use case of cloud API management at a worldwide energy industry leader. The presentation depicted the exposition of customer’s “Fuel Market” intranets website existing APIs to the outside world. This integration outlined the added value of the API Gateway as authentication layer, security and Quality Of Service (QoS) enforcement point. Also, the retained cloud infrastructure enabled for a scalable and reliable solution, allowing developers to focus on services instead of worrying about the infrastructure.
The Emergence of Choice in the .NET Ecosystem
The slides for a talk I delivered at the Triangle area .NET group about the emergency of choice in .NET and highlighting 10 specific open source tools.
Open source software governance with DejaCode
Dennis Clark, Product Manager, and Pierre Lapointe, Customer Care Manager, present DejaCode, nexB's product for Software Component License Management, including:
- How to implement effective policies for OSS license and component usage,
- How to set up efficient approval workflows for OSS license and component usage, and
- How to automate OSS Attribution Notice generation.
HTTP Authorization using OPA
Business applications of today stress a lot on authorization and policy handling. However, authorization and policy are complex to achieve in cloud-native environments. Security & compliance problems need to be addressed early on in the development & deployment cycles. Software & feature releases happen in minutes. To support this, the outdated methods of writing policies via PDFs and emails are not going to work.
This is where Open Policy Agent came into force so that security & compliance can be enabled by machines and the software can adhere to all necessary requirements. It’s suitable for cloud-native environments and is widely used for Kubernetes admission control spanning major cloud providers. OPA is also used for on-prem deployments clubbed with HTTP API authorization, remote access policy, and data filtering.
In this webinar, our expert will walk you through HTTP Authorization using OPA along with service mesh and how it aids inter-service communication. Book your spot now and don’t miss.
Subscribe to the channel if you would like to learn more such insights: http://bit.ly/2TksG9H
Open Source - Not just for IT anymore
Presented at the Open Repositories Conference, this presentation describes the Lessons Learned in the Open Source Movement that can be used outside of the traditional IT environment.
Similar to the Apache way (20)
apidays Hong Kong - Why is API Gateway essential to business, Zhiyuan Ju, API...
apidays Hong Kong - Why is API Gateway essential to business, Zhiyuan Ju, API...
Internet of Things - protocols review (MeetUp Wireless & Networks, Poznań 21....
Internet of Things - protocols review (MeetUp Wireless & Networks, Poznań 21....
Serial Data from Arduino to Raspberry Pi to MySQL using CoAP Protocol
Serial Data from Arduino to Raspberry Pi to MySQL using CoAP Protocol
Managing Software Inventories & Automating Open Source Software Compliance
Managing Software Inventories & Automating Open Source Software Compliance
elasticRTC -- how to have your own WebRTC cloud scaling to be billions in min...
elasticRTC -- how to have your own WebRTC cloud scaling to be billions in min...
Legal and practical concerns with open source software
Legal and practical concerns with open source software
2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management
More from Giovanni Bechis
SpamAssassin 4.0 new features
SpamAssassin 4.0 is going to be released soon.
In this version there will be a lot of new features useful to catch new types of spam messages and a lot of improvements.
ACME and mod_md: tls certificates made easy
ACME is a protocol for automating certificate lifecycle management communications between Certificate Authorities (CAs) and a company’s web servers.
The most known implementation is the one made by Let’s Encrypt non-profit CA.
There are many other implementation and one of the most attractive and easy to use is Apache httpd mod_md.
During the talk I will explain why ACME protocol is important to secure web sites and how mod_md could ease the transition to a more secure www.
Scaling antispam solutions with Puppet
Antispam is not easy and it covers a lot of technologies, automating deploy with Puppet will make your life easier.
What's new in SpamAssassin 3.4.3
SpamAssassin 3.4.3 will be released in few days, here is a quick description of all new features developed in ~1 year.
Fighting Spam for fun and profit
In this talk I will describe what's new in SpamAssassin 3.4.2, the ideas for further developments and some tips to improve the efficiency of your antispam solution.
Linux seccomp(2) vs OpenBSD pledge(2)
seccomp is a computer security facility in the Linux kernel, pledge is a similar security facility in the OpenBSD kernel. In this presentation Giovanni Bechis will review the development story and progress of both kernel interfaces and will analyze the main differences. There will be some examples of implementations of security patches made for some important open source projects.
Pledge in OpenBSD
Pledge is a new mitigation technique available in the OpenBSD operating system.
It is used to disable system calls a process is not allowed to call.
Pf: the OpenBSD packet filter
pf(4) is the OpenBSD packet filter that provides stateful packet filtering and network address translation (NAT). It is used in OpenBSD, FreeBSD, NetBSD, DragonflyBSD, and other systems. Some key features of pf include its flexible rule syntax, atomic ruleset updates, integrated traffic shaping, and ability to divert packets to userspace processes like spamd for inspection. It provides logging in tcpdump format and can integrate with CARP and other services. The pf code was developed for OpenBSD after the previous IPFilter code was removed due to licensing issues.
ELK: a log management framework
This document summarizes an overview of the ELK stack presented at LinuxCon Europe 2016. It discusses the components of ELK including Beats, Logstash, Elasticsearch, and Kibana. It provides examples of using these components to collect, parse, store, search, and visualize log data. Specific topics covered include collecting log files using Filebeat and Logstash, parsing logs with Logstash filters, visualizing data in Kibana, programming Elasticsearch with REST APIs and client libraries, and alerting using the open source ESWatcher tool.
OpenSSH: keep your secrets safe
OpenSSH is a free SSH implementation used for secure communications and file transfers. It provides strong cryptography, authentication methods, and allows for features like port forwarding, X11 forwarding, and file transfers. OpenSSH uses a modular structure which separates the transport, authentication, and connection protocols. This makes it more secure than the original SSH version 1, especially against man-in-the-middle attacks. The OpenSSH codebase focuses on security through techniques like input validation, sandboxing, and process separation between the monitoring and slave processes.
OpenSMTPD: we deliver !!
OpenSMTPD is a FREE implementation of the server-side SMTP protocol as defined by RFC 5321, with some additional standard extensions. It allows ordinary machines to exchange e-mails with other systems speaking the SMTP protocol.
Started out of dissatisfaction with other implementations, OpenSMTPD nowadays is a fairly complete SMTP implementation.
LibreSSL, one year later
This document discusses the Heartbleed bug in OpenSSL and the creation of LibreSSL as a more secure alternative. It notes that 17% of HTTPS servers were vulnerable to Heartbleed, which allowed attackers to steal passwords, credit cards, and other private data from server memory. LibreSSL was created to have fewer lines of code, modern coding practices, and fewer portability workarounds than OpenSSL to address bugs like Heartbleed. The document emphasizes fixing bugs quickly and not reinventing standard library functions.
LibreSSL
LibreSSL is a version of the TLS/crypto stack forked from OpenSSL in 2014, with goals of modernizing the codebase, improving security, and applying best practice development processes.
Primary development occurs inside the OpenBSD source tree with the usual care the project is known for. On a regular basis the code is re-packaged for portable use by other operating systems.
SOGo: sostituire Microsoft Exchange con software Open Source
Microsoft Exchange è lo standard de-facto in ambito groupware, ora però lo si può sostituire con strumenti open source senza perdere funzionalità e guadagnandoci in efficenza, sicurezze e in possibilità di integrazione con altri software.
Cloud storage, i tuoi files, ovunque con te
Questa è una breve introduzione alle possibilità offerte dalle piattaforme di cloud storage open source come owncloud e seafile; in particolare vengono analizzate le peculiarità del software Seafile.
Npppd: easy vpn with OpenBSD
Npppd is a VPN daemon in OpenBSD that supports PPTP, L2TP and PPPoE. It can authenticate using local files or RADIUS and tunnel IP packets. Npppd first appeared in OpenBSD 5.3 and its configuration file format has changed over time. Example configurations show how to set up basic and advanced npppd VPN tunnels using PPTP or L2TP with IPsec, and how to monitor active sessions. Future work may include better packet filtering and ARP cache integration.
Openssh: comunicare in sicurezza
Ssh è lo standard de-facto nelle comunicazioni sicure, questa è una breve ma esaustiva introduzione alle caratteristiche del programma e al suo utilizzo.
Ipv6: il futuro di internet
Il protocollo ipv6 è la nuova versione del protocollo ipv4, la base di internet così come lo conosciamo ora.
Sul protocollo ipv6 si baserà l'internet del futuro.
Relayd: a load balancer for OpenBSD
Relayd is a daemon to relay and dynamically redirect incoming connections to a target host.
Its main purposes are to run as a load-balancer, application layer gateway, or transparent proxy.
More from Giovanni Bechis (20)
SOGo: sostituire Microsoft Exchange con software Open Source
SOGo: sostituire Microsoft Exchange con software Open Source
Recently uploaded
Taking AI to the Next Level in Manufacturing.pdf
Read Taking AI to the Next Level in Manufacturing to gain insights on AI adoption in the manufacturing industry, such as:
1. How quickly AI is being implemented in manufacturing.
2. Which barriers stand in the way of AI adoption.
3. How data quality and governance form the backbone of AI.
4. Organizational processes and structures that may inhibit effective AI adoption.
6. Ideas and approaches to help build your organization's AI strategy.
Fueling AI with Great Data with Airbyte Webinar
This talk will focus on how to collect data from a variety of sources, leveraging this data for RAG and other GenAI use cases, and finally charting your course to productionalization.
OpenID AuthZEN Interop Read Out - Authorization
During Identiverse 2024 and EIC 2024, members of the OpenID AuthZEN WG got together and demoed their authorization endpoints conforming to the AuthZEN API
TrustArc Webinar - 2024 Global Privacy Survey
How does your privacy program stack up against your peers? What challenges are privacy teams tackling and prioritizing in 2024?
In the fifth annual Global Privacy Benchmarks Survey, we asked over 1,800 global privacy professionals and business executives to share their perspectives on the current state of privacy inside and outside of their organizations. This year’s report focused on emerging areas of importance for privacy and compliance professionals, including considerations and implications of Artificial Intelligence (AI) technologies, building brand trust, and different approaches for achieving higher privacy competence scores.
See how organizational priorities and strategic approaches to data security and privacy are evolving around the globe.
This webinar will review:
- The top 10 privacy insights from the fifth annual Global Privacy Benchmarks Survey
- The top challenges for privacy leaders, practitioners, and organizations in 2024
- Key themes to consider in developing and maintaining your privacy program
Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays, June 2024 with Maria Copot 20
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
ここ3000字までしか入らないけどタイトルの方がたくさん文字入ると思います。
20240609 QFM020 Irresponsible AI Reading List May 2024
Everything I found interesting about the irresponsible use of machine intelligence in May 2024
Building Production Ready Search Pipelines with Spark and Milvus
Spark is the widely used ETL tool for processing, indexing and ingesting data to serving stack for search. Milvus is the production-ready open-source vector database. In this talk we will show how to use Spark to process unstructured data to extract vector representations, and push the vectors to Milvus vector database for search serving.
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
Simplify your search for a reliable Python development partner! This list presents the top 10 trusted US providers offering comprehensive Python development services, ensuring your project's success from conception to completion.
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for life science domain, where you retriever information from biomedical knowledge graphs using LLMs to increase the accuracy and performance of generated answers
Presentation of the OECD Artificial Intelligence Review of Germany
Consult the full report at https://www.oecd.org/digital/oecd-artificial-intelligence-review-of-germany-609808d6-en.htm
June Patch Tuesday
Ivanti’s Patch Tuesday breakdown goes beyond patching your applications and brings you the intelligence and guidance needed to prioritize where to focus your attention first. Catch early analysis on our Ivanti blog, then join industry expert Chris Goettl for the Patch Tuesday Webinar Event. There we’ll do a deep dive into each of the bulletins and give guidance on the risks associated with the newly-identified vulnerabilities.
Choosing The Best AWS Service For Your Website + API.pptx
Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API?
Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose?
Which one is cheapest? Which one is fastest? Which one will scale to meet our needs?
Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!
Programming Foundation Models with DSPy - Meetup Slides
Prompting language models is hard, while programming language models is easy. In this talk, I will discuss the state-of-the-art framework DSPy for programming foundation models with its powerful optimizers and runtime constraint system.
Full-RAG: A modern architecture for hyper-personalization
Mike Del Balso, CEO & Co-Founder at Tecton, presents "Full RAG," a novel approach to AI recommendation systems, aiming to push beyond the limitations of traditional models through a deep integration of contextual insights and real-time data, leveraging the Retrieval-Augmented Generation architecture. This talk will outline Full RAG's potential to significantly enhance personalization, address engineering challenges such as data management and model training, and introduce data enrichment with reranking as a key solution. Attendees will gain crucial insights into the importance of hyperpersonalization in AI, the capabilities of Full RAG for advanced personalization, and strategies for managing complex data integrations for deploying cutting-edge AI solutions.
Artificial Intelligence for XMLDevelopment
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
Generating privacy-protected synthetic data using Secludy and Milvus
During this demo, the founders of Secludy will demonstrate how their system utilizes Milvus to store and manipulate embeddings for generating privacy-protected synthetic data. Their approach not only maintains the confidentiality of the original data but also enhances the utility and scalability of LLMs under privacy constraints. Attendees, including machine learning engineers, data scientists, and data managers, will witness first-hand how Secludy's integration with Milvus empowers organizations to harness the power of LLMs securely and efficiently.
National Security Agency - NSA mobile device best practices
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Microsoft - Power Platform_G.Aspiotis.pdf
Revolutionizing Application Development
with AI-powered low-code, presentation by George Aspiotis, Sr. Partner Development Manager, Microsoft
Video Streaming: Then, Now, and in the Future
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Recently uploaded (20)
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
GraphRAG for Life Science to increase LLM accuracy
GraphRAG for Life Science to increase LLM accuracy
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
Programming Foundation Models with DSPy - Meetup Slides
Programming Foundation Models with DSPy - Meetup Slides
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
Generating privacy-protected synthetic data using Secludy and Milvus
Generating privacy-protected synthetic data using Secludy and Milvus
National Security Agency - NSA mobile device best practices
National Security Agency - NSA mobile device best practices
the Apache way
- 1. The Apache Way Giovanni Bechis <gbechis@apache.org>
- 2. - 501(3)c foundation - 364 projects - 30 incubating projects - 9180 committers - ~285 millions lines of code Apache Software Foundation
- 3. - permissive license, not copyleft license - it does not require a derivative work of the software, or modifications to the original, to be distributed using the same license - It still requires application of the same license to all unmodified parts. In every licensed file, original copyright, patent, trademark, and attribution notices must be preserved Apache License 2.0
- 4. The purpose of this agreement is to clearly define the terms under which intellectual property has been contributed to the ASF and thereby allow us to defend the project should there be a legal dispute regarding the software. An individual must have submitted a signed ICLA to the ASF before we give them commit rights to any ASF project. ASF Contributor Agreements
- 5. ASF Projects
- 6. ASF Projects Distributed event streaming platform - messaging (instead of ActiveMQ) - website activity tracking - monitoring data - log aggregation
- 7. ASF Projects Big data storage and processing - search engine - machine learning
- 8. ASF Projects analytics engine for large- scale data processing - machine learning - event detection
- 9. ASF Projects web server - http web server - http proxy server
- 10. Apache Incubator Helps projects which want to enter the Apache Software Foundation - community building - publicity / media - graduation
- 11. Apache Software Foundation - User - Developer - Committer - PMC member - PMC chair - ASF Member
- 12. Apache Software Foundation Community over code - Earned Authority - Community of Peers - Open Communications - Consensus Decision Making - Responsible Oversight