We’re looking at bug tracking software at work, so I am trying out

• bugzilla
• trac

Both are bug trackers (or issue trackers or feature trackers) which serve up content from databases to browsers. Here are some notes:

Bugzilla

• integrates with apache, MySql (or postgresql if you prefer), cvs, lxr
• can browse source code repository (cvs by default, using lxr or linux cross reference)

trac

• integrates with apache (or it can run its own standalone server tracd, or it can run from inetd), sqlite3, svn
• incorporates a wiki
• can browse source code repository (svn by default)

I’m trying to make a separate trac instance for each project, so I can run the server process as a separate user and have all the related files owned by that user. It was a fair bit of work (but possible) to make apache do that.

Lots of people use them, most don’t protect them. I just saw a story on a new (well recent) attack vector on those ubiquitous routers that we all use to connect to the internet. The full story is located on ZDnet and basically shows that some carefully crafted javascript and an improperly configured router can result in all kinds of nastiness.

The full implications are pretty staggering. Basically if the admin page is left at the manufacturers defaults, the router can be configured to use an attackers DNS server, effectively forcing you to go where they want you to. Think about that for a moment. If the DNS is hijacked, then requests to go to your bank, online shopping, direct bill payments, etc could be redirected invisibly to a mock site and your personal info could be collected. Better yet, after they get the info, the mock site could redirect you to the real site and you may not even notice it happened.

Bold

Italic

Underline

subscriptsubscript

superscript^superscript^

1. numbered list 1
2. numbered list 2
3. numbered list 3

• unordered list 1
• unordered list 2
• unordered list 3

left justified test Lorem ipsum dolor sit amet, consectetuer adipiscing elit, sed diam nonummy nibh euismod tincidunt ut laoreet dolore magna aliquam erat volutpat. Ut wisi enim ad minim veniam, quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut aliquip ex ea commodo consequat. Duis autem vel eum iriure dolor in hendrerit in vulputate velit esse molestie consequat, vel illum dolore eu feugiat nulla facilisis at vero eros et accumsan et iusto odio dignissim qui blandit praesent luptatum zzril delenit augue duis dolore te feugait nulla facilisi. Nam liber tempor cum soluta nobis eleifend option congue nihil imperdiet doming id quod mazim placerat facer possim assum. Typi non habent claritatem insitam; est usus legentis in iis qui facit eorum claritatem. Investigationes demonstraverunt lectores legere me lius quod ii legunt saepius. Claritas est etiam processus dynamicus, qui sequitur mutationem consuetudium lectorum. Mirum est notare quam littera gothica, quam nunc putamus parum claram, anteposuerit litterarum formas humanitatis per seacula quarta decima et quinta decima. Eodem modo typi, qui nunc nobis videntur parum clari, fiant sollemnes in futurum.

Well, I don’t think joy is the correct word, but you get the meaning. Since anyone can self-publish, maybe they should. Storage is cheap, anything posted on the internet appears to remain around forever, and there are internet archeology sites that keep information long past it’s expiry date.

Maybe that’s what we need, an expiration date for content. After that it goes into the Public Domain bit bucket. Oh, wait a sec, we already have that, it’s called a copyright and some fool keeps changing the best before date. I don’t know about you but UHT treatment for content doesn’t seem to work. Why should copyright be extended way beyond the death of the creator?

Oddly enough, looking at the calendar to the right as I write this, it shows that today is the 13th of February. I appear to have a time travelling calendar, as the system time shows correctly and the time settings for the site match the system time.

It’s a mystery for another day though, as I have no desire to pour over the calendar module to see if it is set to GMT by default.