Sun Country's Weblog archive
Date : December 29, 2011

Recovering From a ZFS Disaster

by alan
Published on: December 29, 2011
Comments: No Comments
Categories: Android / Chrome / Google, Apache, cnet, Computerworld / IT World / IDG, Oracle, Verizon


Improved Customer Engagement & Discovery in the Google Apps Marketplace


Cox Communications Announces Agreement to Sell Advanced Wireless Spectrum to Verizon Wireless


Websites, apps vulnerable to low-bandwidth, bot-free takedown, say researchers


HTC makes locked bootloaders a thing of the past


[SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability

You may have read about a recently announced vulnerability rooted in the
Java hashtable implementation [1]. Since Apache Tomcat uses a hashtable
for storing HTTP request parameters, it is affected by this issue.

As per [1], it appears that Oracle will not be providing a fix for this
vulnerability with in the JRE.

Tomcat has implemented a work-around for this issue by providing a new
option (maxParameterCount) to limit the number of parameters processed
for a single request. This default limit is 10000: high enough to be
unlikely to affect any application; low enough to mitigate the effects
of the DoS.

The work-around is available in:
7.0.23 onwards
6.0.35 onwards

The work-around will also be available in 5.5.35 once released.

If using an earlier version of Apache Tomcat that does not have the
maxParameterCount attribute available, limiting the maxPostSize to a few
10’s of kB should also mitigate the issue although it may cause issues
for some applications.

While this is not viewed as a vulnerability in Apache Tomcat, the Apache
Tomcat security team is making this announcement due to the high
likelihood that applications will be affected by this issue and to make
users aware of the available work-arounds.

The Apache Tomcat security team


To unsubscribe, e-mail:
For additional commands, e-mail:


In Indian Slum, Misery, Work, Politics and Hope

by alan
Published on: December 29, 2011
Comments: No Comments
Categories: Animals, BBC, Notes / Tips, The New York Times, Wired News, WordPress


North Korea Declares Kim Jong-un Supreme Leader


Instead of Work, Younger Women Head to School


Bishops Say Rules on Gay Parents Limit Freedom of Religion

Why does it also sound disingenuous when a community that has no choice but to rape and molests primarily babies and children and then tells them to lie about it always complain about their rights being trampled on?  If their right to go through life without being raped or molested hadn’t been trampled on earlier in life then there wouldn’t be an issue.

US sells $30bn in F-15 jets to Saudi Arabia


Orangutans ‘could video chat’ between zoos via iPads


Marine surveys record ‘brainless fish’ off Orkney

I was scuba diving and then I saw myself in a mirror?  Who just said that?

An Overview of Firefox’s Coming Developer Tools


WordPress Developers That Are Hiring

Hanging with the family

by alan
Published on: December 29, 2011
Comments: No Comments
Categories: Comics

A clown could get away with it.  John Wayne Gacy

Flattr Me
Welcome , today is Monday, July 6, 2015