Red Hat has actively participated in the ISO group defining the C++ standard for many years, and continues to make a significant contribution. The Red Hat toolchain team was well-represented at the spring meeting of the standardization committee (technically JTC1/SC22/WG21) in Bristol, UK, last month: we had three people there for the full week, with one other visiting a couple of times during the week. In this article, Jason Merrill summarizes the main highlights and developments of interest to Red Hat’s customers and partners:
Continue reading Red Hat at the ISO C++ Standards Meeting, Bristol, UK
The goal of this article is use the OpenShift Platform as a Service (PaaS) as a learning platform for Django. Most of the technical articles out there about running Django on OpenShift assume the user already understands how to administer Django environments and projects. This article is written from the perspective of someone who has done some python programming and wants to learn some Django without doing a bunch of setup work.
Since each OpenShift Gear “…is a container with a set of resources that allows users to run their applications”, a user can ssh in to test, troubleshoot, debug and learn. This turns out to be quite convenient for learning Django.
First, we must deploy an OpenShift application. The deployment is completely automated with the Django Quickstart. Once completed, the web interface will return all of the connection information necessary for Django, Git, and SSH. Estimate 5 minutes.
https://www.openshift.com/quickstarts/django -> Deploy Now
RPM Package Manager (RPM) was created to deliver software to workstations and servers. Besides being an efficient software delivery mechanism, RPM also provides security features that assist system administrators with managing their software and trusting the code that is going into their infrastructure.
What is an RPM?
RPM is a package management system that bundles software source code or binaries together for easy installation on a computer. These files are tracked and allow for easy installation, upgrading, and removal. Since the RPMs have been built specifically for the operating system and platform they are installed on, the software is expected to operate in a predictable and consistent manner.
RPMs not only make it easy for the user to install software on their computer but also for the developer to deliver the software. RPMs makes it easy to pull in dependencies, other bits of code needed by the software to function properly, and to provide updates to the software in question. The ability to apply patches for security fixes makes RPMs an especially good tool for maintaining secure computer environments as code fixes can easily be verified by system administrators prior to installation.
Continue reading “The Security Benefits of RPM Packaging”
As a C, C++, or Fortran developer, you want easy access to supported versions of the latest and greatest tools, features and standards support. You also want to write and test your application once for deployment to multiple versions of Red Hat Enterprise Linux.
Continue reading Come and hear about Developer Toolset at Red Hat Summit and Developer Exchange
With Red Hat’s many successful product level developer programs for JBoss, OpenShift, Red Hat Enterprise Linux, etc., plus a bunch more available with upstream communities, we’re working on complementing these offerings with an all-Red Hat developer program that introduces developers, ISV and SaaS players, and others to Red Hat’s robust developer portfolio.
Continue reading Red Hat Developer Program
A new video focused on the “Security Mentality” in the secure programming series has been released. Some interesting things are covered about how developers think about security and why they accidentally introduce security flaws into their systems. As a corollary to Bruce Schneier’s law, Josh offers “Any developer can build an application so secure that he or she cannot exploit it.” Please watch the videos for some ideas about cheating and about how to avoid the biases in your own thinking. As a bonus, you can find out a number of ways to hide 100 digits of Pi :). Also, there is a surprise quiz in this video, remember to think “outside the box!” Part 1 and Part 2.
WebSockets are a rising technology that solves one of the great needs of web development – full duplex communication between a browser (or a different client) and a server.
Let’s imagine a simple scenario – live web chat. In the past, you’d probably use AJAX and polling to make new posts appear in realtime. The downside is that implementing all that is not entirely easy and it tends to put a lot of strain on the server.
This article will show you how to implement a simple web chat using WebSockets, thus eliminating the above problems. We will be using the Tornado web server with the Flask framework, producing a pure Python solution. To get the maximum out of Python 2.x, we will utilize the python27 Software Collection (SCL). We will also need a newer version of Firefox that supports WebSocket technology, so that we can test from the RHEL 6 machine that we’re developing on.
Continue reading “Unleashing Power of WebSockets on RHEL 6”
Authorization and Authentication are both important aspects to secure development. Come check out our latest video in the secure development series and learn about often overlooked authorization events in your applications. The video also discusses Cross-Site Request Forgeries (CSRF), what they are and how to avoid them (e.g. OWASP CSRF Prevention Cheat Sheet).