Cody Taylor

snydeq writes “Microsoft Excel has a zero-day vulnerability that attackers are exploiting on the Internet, according to security vendor Symantec. The problem affects Excel 2007 both without and with Service Pack 1, according to an advisory on SecurityFocus, and other versions going back to Excel 2000. The program’s vulnerability can be exploited if a user opens a maliciously crafted Excel file, allowing a hacker to leave a Trojan horse on the infected system.”

Read more of this story at Slashdot.

An anonymous reader writes “The widely used Bourne-Again Shell (BASH) version 4.0 is out. The new major release fixes several remaining bugs in the 3.x releases, and introduces a bunch of new features. The most notable new features are associative arrays, improvements to the programmable completion functionality, case-modifying word expansions, co-processes, support for the `**’ special glob pattern, and additions to the shell syntax and redirections. The shell has been changed to be more rigorous about parsing commands inside command substitutions, fixing one piece of POSIX non-compliance. Most of us will probably wait for the distros to test the new version and upgrade gradually, but you always have the option of grabbing the source and compiling it yourself. Enjoy.”

Read more of this story at Slashdot.

Stephen Brandon writes “It used to be that to set up a database-backed web site required at least a server guy, a database administrator, a programmer, and a designer. Joomla! and other modern CMS systems have opened the door to allow non-administrators to be able to set up complete e-commerce or informational sites, using great free software and easy-to-find commercial hosting. What then of security? A new book by Tom Canavan, Joomla Web Security, aims to bridge the knowledge gap, introducing Joomla! admins to a set of security tools, and skills sometimes found lacking in the Joomla! community.” Read on for the rest of Stephen’s review.

Read more of this story at Slashdot.

Scareware has found itself a new flavor in Anti-Virus-1, possibly in response to court cases and investigations launched against Antivirus XP last year. In this case, the program is a bit malware, a bit scareware, and generally bad news. It doesn’t just yammer at the user with false positives, it’ll also hijack your browser and aim it at phony posi

jonniee writes “D is a programming language created by Walter Bright of C++ fame. D’s focus is on combining the power and high performance of C/C++ with the programmer productivity of modern languages like Ruby and Python. And now he’s ported it to the Macintosh. Quoting: ‘[Building a runtime library] exposed a lot of conditional compilation issues that had no case for OSX. I found that Linux has a bunch of API functions that are missing in OSX, like getline and getdelim, so some of the library functionality had to revert to more generic code for OSX. I had to be careful, because although many system macros had the same functionality and spelling, they had different expansions. Getting these wrong would cause some mysterious behavior, indeed.'”

Read more of this story at Slashdot.

Open-source pioneers Bill and Lynne Jolitz may be the most famous programmers you’ve never heard of.