Low key tearing up because I found yet another screen reader inaccessible ebook website. I just want to read. Is that too much to ask? All I want is to be able to open a website and be able to read it.

Making text screen reader accessible is the easiest thing in the world. You have to do literally nothing. It’s text. Screen readers are literally build to read text on a screen.

If you’re a total noob who knows nothing about HTML and you just put your text in your document, nothing else, it’s accessible. You put it in a <p> tag? Accessible. Span? Div? All accessible. You can fucking echo it in a PHP file and it will be accessible.

Text is literally accessible by default. How do all these people manage to fuck it up so bad????? I wouldn’t be able to do that if I tried!

The only consistently accessible literature website, if you can call it that, is AO3. Fan fiction is great. I love fan fiction, but I don’t want to read only fan fiction. There’s a long list of books I want to read – fiction, but especially non fiction.

And there’s a long list of websites where these books are available, both legitimate and piracy. And yet! And yet I cannot read them, because I am disabled. Because I do not read with my eyes, but with my screen reader. Because nobody cares about us enough to even consider us when building and formatting a website. Because nobody cares about us enough to do a single manual test or run a free accessibility checker extension.

I just want to read. Is that too much to ask?

Do you have recommended resources for a total php noob?

Beginner-Friendly Tutorials and Courses

The official PHP manual It’s the best place to understand core functions, examples, and the most recent updates in PHP. To be used for consultations.

W3Schools PHP Tutorial: beginner-friendly. It’s easy to follow and gives you simple examples that you can run quickly.

PHP: The Right Way: good overview of best practices, coding standards, and modern PHP usage.

Laracasts is more known for Laravel (the framework) users, but they have a fantastic PHP basics series.

There’s a comprehensive YouTube tutorial from freeCodeCamp that covers the fundamentals of PHP.

Books

PHP & MySQL: Novice to Ninja by Kevin Yank

Modern PHP by Josh Lockhart

Join local PHP communities!

My first steps in PHP.

Symfonos 4

 So this is the fifth machine I’ve rooted and I must say it was one of the more enjoyable ones thus far! You can download this here: https://www.vulnhub.com/entry/symfonos-4,347/

Scans

I started by running enum.sh, producing the following results:

From this we can see that there are two services to enumerate- SSH 7.9p1 and Apache/2.4.38. There are also a few publicly known vulnerabilities associated with the Apache server; from my experience it’s worth leaving these as a last resort if manual checks of the website prove unproductive.

Nikto also reveals the presence of a page that our simple directory enumeration failed to spot- atlantis.php (mentioned in robots.txt)

Atlantis & SQL Injection

Upon visiting atlantis, we’re greeted with a simple login page which is revealed to be vulnerable to SQL injection (after some trial and error):

This would roughly resolve to:

SELECT * FROM users WHERE username=‘1′ OR 7941=7941-- ss’

The ‘--’ comments out the rest of the query, making the password value and “ss’” redundant.

After a successful login, we’re greeted with sea.php and a GET query parameter named ‘file’:

I fell down a bit of a rabbit hole here due to my inexperience with web apps and a lack of confidence: I tried for a couple of hours to exploit this when I should have stopped after the first 10 minutes but I convinced myself I was trying to exploit the GET parameter wrongly due to confirming it was in fact interacting with the filesystem (file=poseidon/../hades resulted in information on Hades being returned).

SQLMap

After finally reaching a point where I realized this parameter was not going to get me anywhere, I went back to the SQL injection I had discovered... Perhaps I could find a way to gather the required information this way instead?

Being an SQL noob, I ran some tests with SQLmap (big no-no in OSCP I know; I’ve only ever exploited basic SQL injection thus manual testing would have taken me ages!)

Firstly, I attempted to recover information of the in-use databases:

sqlmap -vvv -u http://192.168.0.23/atlantis.php --forms --dbs

This revealed the presence of 4: information_schema|performance_schema|mysql|db (this would have been a query like ‘show databases;’ or similar.) More importantly, we know that more information can be gathered from SQL injection.

I decided from here to gather information on the current user (root, revealed by something like ‘select user();’) in addition to testing the extent of our privileges by grabbing /etc/hosts.

From here I decided to grab /etc/passwd to enumerate system users, discovering the presence of a user named poseidon.

File grabbing query: username=5265' OR ORD(MID((IFNULL(CAST(HEX(LOAD_FILE(0x2f7661722f7777772f68746d6c2f7365612e706870)) AS NCHAR),0x20)),6,1))>1-- LxQz&password=

While I ran my SSH brute-force tool against poseidon, I proceeded with using SQLmap to exploit the injection, next proceeding to look at files on the web server itself.

Checking atlantis.php revealed database credentials: <?php   define('DB_USERNAME', 'root');   define('DB_PASSWORD', 'yVzyRGw3cG2Uyt2r');

Note: definitely just copy and paste the hex into an encoder as it runs- you find the credentials in 10-20 minutes vs waiting for the whole file to be revealed.

Hmmm... I had a feeling using this password with root wouldn’t work (too easy) so I tried to login to SSH with this password as poseidon which proved successful.

Privesc

Privilege escalation was actually quite simple but it took me a while due to having no experience with JSONpickle and also spending a large amount of time looking for a method other than exploiting a local web server hosted by the root user (I knew this was going to be timely for me but it proved to waste more time looking around.)

After a few hours of trying to exploit the web server directly and thinking the vector was SSTI, I finally had the sense to create a small test program to see for myself what was happening when I performed certain injections:

JSONpickle

#!/usr/bin/env python import jsonpickle import base64

b64=input("b64 str? ")

user = jsonpickle.decode(base64.b64decode(b64)) username = user.username print username

Root

After this, I found the working payload in a matter of half an hour:

cookie:username=eyJweS9vYmplY3QiOiJhcHAuVXNlciIsInVzZXJuYW1lIjoic3MiLCJweS9yZWR1Y2UiOlt7InB5L2Z1bmN0aW9uIjogIm9zLnN5c3RlbSJ9LFsibmMgLXZscCA2NjEgLWUgL2Jpbi9iYXNoIl0sMCwwLDBdfQ==/{"py/object":"app.User","username":"ss","py/reduce":[{"py/function": "os.system"},["nc -vlp 661 -e /bin/bash"],0,0,0]}

This didn’t have to include the username upon review; if it’s ain’t broke don’t fix it. xD

I used Telnet to send GET requests to the root running web server (you can see below how this is done- you just type it manually and double-enter when the relevant lines are complete.)

This opened a Netcat listener on port 661 for the root user, executing /bin/bash upon successful connection... And that’s it really. :)

Definitely has taught me to have a little more confidence in myself- if something hasn’t yielded any results in the first half an hour of testing it, it’s probably not vulnerable to anything- not everything has a complicated hidden method of exploitation.

EDIT: So, that’s not it really... xD my path to root proved to be different to a majority: https://www.hackingarticles.in/symfonos4-vulnhub-walkthrough/

Turns out my instinct was right- I did miss something with the LFI (I had tried to access /etc/passwd and several other files with no luck; accessing ../../../var/log/auth reveals a potential for SSH log poisioning which you use to create a reverse shell and then you can port forward to port 8080...)

Login/Users Noob Version - The Noob CMS ☞ http://go.thegeeknews.net/a2c69ce9f3 #php #laravel

PHP Get And Post Methods. And How To Use Them

PHP Get And Post Methods. And How To Use Them #web #webdev #webdevelopment #php #phptutorial #postmethod #post #getmethod #get #requestmethod #request #learnphp #phpbeginner #programming #programmingnoob #beginner #noob #learntocode

Moving on in our series of PHP tutorials for beginners, in this tutorial you will learn how to send information to the server using GET and POST methods and how to retrieve info in PHP. What Are POST And Get Methods In PHP? Web browser communicates with the server using one of two HTTP methods – GET and POST. Both methods passes the information differently and have some advantages and…

View On WordPress

WordPress vs. Squarespace

Great job, you’ve finally narrowed it down to two options: WordPress.org or Squarespace. So, which of these two website platforms is right for you? Well, that’s like asking what kind of food you should eat. The short answer is: it depends.

👉 What is WordPress?

Short answer: WordPress is a content-management system that originated as a blogging tool. It runs on PHP and a MySQL database. In english Wordpress platform is flexible enough to enable developers to take full control over the websites they create.

👉 What is Squarespace?

Squarespace is all-in-one website builder that is becoming increasingly popular and used by more and more people around the world every day. Easy to use for noobs, awesome design options to choose from and very easy to start with.

👉 Which Platform Should You Use:

It depends on your goals and knowledge. For example if you are planning on designing a website for a family reunion, wedding, youth sports...I would recommend using Squarespace. This will allow you to build a great looking website with limited design knowledge. If you are planning a website for your business I would highly recommend using WordPress platform due to SEO, design flexibility and blogging options. Yes, it will require some time and effort, but the number of options doesn’t even compare with the Squarespace.

❓ Got Any Thoughts on Squarespace vs WordPress?

Have you any thoughts on Squarespace vs WordPress? Do let us know in the comments section below or visit our website PandaOnlineMarketing.com

Noob’s Guide to Traveling

About 3 years ago, my grandmother died. The last time I spoke to her, a few days before she passed, she made me promise to take trips outside of the country. So when an out-of-the-country trip opportunity came knocking on my door I snagged it in a heart beat. I told my self it was a way to remember my beloved grandmother.

Preparing for this trip was not a walk in the park. I had no clue how physically and financially draining it was for an entry job level working girl, but I was determined to do this trip WITHOUT TAKING OUT A LOAN. After months of planning and saving, my co-workers and I got into a plane to Taiwan. So from one noob traveler to another, here are a few tips and tricks that I picked up from this adventure

Do your research

You have got to ask yourself the tough questions.What places do you want to visit? How will you get there?  How long will you be staying? Where’s the nearest convenience store and is your hotel near it?

Binge watching Youtube videos from people who either visited or lived in the country you wish to visit is the best way to learn how to get to places and the culture the place has (Shout out to John Saboe and his very helpful videos).

Allocate you funds

I didn’t take up any loans from banks when I went to Taiwan. I only collected money enough to make the trip but - I’m not gonna lie, I was almost penniless when I got back home. I didn’t foresee that I needed to have reserves so when I got back home I still had money to spend on my basic needs.

How did that happen? Well, it was due to the lack of financial planning.

I didn’t foresee a natural calamity hitting when my co-workers and I planned our trip.

Which is why when planning a trip, you should bring twice the amount of pocket money you initially intended to bring. Another is collecting money for a longer period of time. For instance, if you plan to take a trip to Singapore summer next year start allocating funds from your paychecks this month. Look for an amount that won’t leave you begging for scraps.

Apps will help you

Among the many things I installed in my phone where the Klook app and the Google Translator. They helped me talk with the locals and plan for trips that my co-workers and I would not have been able to go through by ourselves.

Old-fashion asking also helped. It’s best to ask in establishments where you know the workers are knowledgeable with the English language, like Starbucks. We were fortunate that Taiwan’s younger people spoke English and asking conversation wasn’t so hard. Plus, Taiwanese are ready to help tourists out however they can.

Book ahead

Booking your flight early would help you save a lot of money. You get the chance to pick the early bird tickets and the prices for hotel rooms aren’t surging up yet. You get to stay on your choice hotel!

Pack less clothes, more money

Packing light helped me save on space luggage and helped me carry things with ease, especially since we needed to move as quick as the locals. Rolling up clothes Marie Kondo style then putting them in small pouch bags gave me enough space to even put another pair of shoes in my luggage.

For women, you can never go wrong with dresses and a coat or two. Just make sure  they are light weight. I bought a heavy coat thinking that the weather in Taiwan would be cold on April. I was so wrong. Good thing I packed a light jacket.

Mind the exchange rate

I learned a trick that some currency are actually hire than others when you exchange on the country you’re visiting. For instance, (and this is a hypothetical scenario) if I brought my PHP pesos and exchanged it on USA for USD I would have less pocket money because of the exchange rate than if I, let’s say, exchange Euro for USD on USA.

Train Cards are a MUST

Taiwan is known for its fast and efficient train system that gets you go to places with ease. One can purchase train tokens by waiting inline in the ticket booth, or they can get a card. Just load it up and swipe it whenever you with to take the train. It also works on buses.

I’d like to point out that the Taiwanese call there money dollars, more specifically Taiwanese Dollars. Much like my co-worker, you might confuse it with USD since machines in convenient stores like 7 eleven uses the USD sign ($) to indicate Taiwanese Dollars.

AND Most Importantly

It’s not where you go, how many tourist spots you get to visit or how many pictures you take, it’s who you’re with that makes the trip memorable. The company you’re with make the trip worth while - even if it’s just your company you’re with.

I’m posting a breakdown of where I went and how much it costs (here) soon - so stay tuned.

Sakuntala

Ang dami kong pinagdaanan para lang mapanuod ang play na ito.

1) Sumakay ng MRT mula Ayala hanggang Q Ave. Anong mas siksikan, lata ng sardinas o bagon ng tren? Hindi natin malalaman. Buti na lang may mabait na kuya na nag-scoot over para makaupo ako. Kay Kuya na may wallpaper na weed, this one’s for u! Hahaha. Stay lit! 

2) Nagbook ng Uber Pool mula Q Ave patungong Studio 72. Hindi ko tinawanan mga corny jokes ng driver ko kasi sexist siya. FYI, women can wear anything they want. Keep your sexist mouth shut.

3) Nakabili ng ticket sa halagang Php 300 kumpara sa benta ng prof ko na Php 450. 

4) Kasabay ko manuod faculty ng DHum at nakakita rin ng kaunting familiar faces mula sa campus. 

5) Nagbook ng Grab Pool (kasi mas mura kaysa Uber Pool) pauwi. Sobrang chill ng Grab driver ko. Pareho kaming nagrant tungkol sa lakas ng pagsara ng car door ni ateng ka-pool ko at nagstop over pa kami sa isang gas station. Siya para jumingle, ako naman ay para bumili ng tubig.

Dahil sobrang noob ako sa directions at pagbyahe nang mag-isa, nagtanong ako paano makapunta mula elbi hanggang Diliman. Lahat sila, ang sinabi ay mag-Uber/Grab na lang. Kaso hindi lahat may kakayahan magbook ng Uber/Grab. Dapat may smartphone ka at internet. Swerte ako kasi pwedeng magbook ang Ate ko para sa akin kahit di kami magkasama. Kaso paano yung iba? Lahat naman tayo entitled sa safe and efficient na mode of transportation eh. Ano kayang hakbangin ang nagawa/gagawin para maging safe,efficient, at mabilis ang pagkocommute ng masang Pilipino? Clue: Hindi ito jeepney modernization. 

Mr. Robot 1

After massively failing at Brainpan 2 for a few weeks, I thought I’d take a breather and collect the 3 possible keys from Mr. Robot. It’s frequently referred to as an ‘OSCP-like’ VM though it’s rating is only beginner-intermediate.

So, the usual: download the VM (https://www.vulnhub.com/entry/mr-robot-1,151/), import into Oracle VM VirtualBox and perform an nmap port scan of your network:

As .17 is the local IP of my Kali Linux instance, it’s obvious that our target is .19 (NOTE: if the VM does not appear, scan every port using ‘-p-’.)

Before commencing with further tests, I added .19 to /etc/hosts and executed a more thorough scan on Mr. Robot (nmap -sV -T5 mr-robot -p-); while this revealed the web servers listening on port 80 and 443 were Apache, there were no open ports beyond these.

Fair enough, time for some nikto and dirb!

Nikto has revealed that responses from the web servers indicate the presence of PHP 5.5.29 and WordPress, in addition to WordPress login portals. It has also flagged the presence of a directory named ‘admin’; upon attempting access, the request is simply looped and no useful data can be found.

I also took the opportunity to test out WPScan- a WordPress vulnerability scanner that comes preinstalled with Kali Linux. While this does show the presence of the XML-RPC API and confirms some of Nikto’s findings, it’s definitely not required.

Dirb continued to run and revealed the presence of robots.txt, in addition to various other pages leading to redirects or lacking any sort of data.

Upon visiting robots.txt, you receive indication of the presence of key 1 and a file of dic format.

For any person with experience in boot2root challenges, they’ll probably have already guessed the obvious path forward- head to the wp-login page found earlier and investigate fsocity.dic.

To remove duplicate lines, I piped the contents of fsocity.dic to sort -u and stored the results in a new file (cat fsocity.dic | sort -u > unique.txt)

I looked through the file briefly for anything resembling a username firstly and by trial and error I received confirmation of the existence of Elliot.

There we go, so now we just need a password; like I’m going to sit and manually try each possibility myself!

Here comes Bash to save the day (yes, I could have used this for users too but I wanted to see the change in error message for myself.)

Not the sexiest but who cares about appearance when  the result’s the same? We still know that the password is ER28-0652.

Surely enough, this password grants us access to the wp-admin dashboard. Although my first time infiltrating a system running WordPress on their web servers, it only took me a couple of minutes before I discovered the themes editor would allow me to alter PHP files… So, also my first experience with a PHP reverse shell!

I originally attempted to alter a php file on the active twentyfifteen theme but executing this in my browser yielded no reverse shell, thus I editted a PHP file of theme twentyfourteen (honestly any should work but I used 404.php)

Surely enough, we receive a stable connection from mr-robot through netcat from user Daemon; further investigation reveals the presence of /home/robot.

Hmm, I’ve never watched Mr Robot but for an alleged hacker- this is pretty laughable… He hashes his password with 1) a crackable hashing algorithm and 2) saves it into a file revealing the algorithm in use… Yeah if real companies are really this stupid then God help our data!

Anyway, let’s give it a run through Johnny with /usr/share/wordlists/rockyou.txt:

Wow, the alphabet… Isn’t he smart? Into Robot we go.

After making my usual mistake and jumping to the more complex methods of privilege escalation first (exploit delivery… ALWAYS run basic checks thoroughly first, https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/ is a really good checklist to follow and refer to if you’ve fell down a rabbit hole,) I discovered that the nmap binary was not only present on the machine; it’s permissions also meant that the program executed under the privileges of the owner, not the user responsible for execution.

From this point, you can simply execute ‘nmap –interactive’ and then ‘!sh’, giving you root access to the system- go ahead and grab key-3-of-3 from /root.

Points to take from Mr. Robot:

You should always look for the most simple forms of entry and test simple vulnerabilities first and thoroughly before looking further into a service (this is my main issue- I jump to investigating further too soon!)

Only give web servers a brief manual check until scans finish- if scans don’t reveal any interesting directories or vulnerabilities, this is the time to begin looking into the site’s content (and other services if present.)

If you’ve tried something with a script that you strongly believed was going to grant you access to a specific area of the web server, check your syntax before moving on: I pretty much wasted Saturday looking more in-depth into Mr. Robot just to discover my original brute force script was only executing grep in the event of curl failing (yeah I know, what a noob!)

Some errors will not flag up as syntax errors as they’re technically valid statements so don’t assume your idea was wrong just because the output isn’t what you expected.

Full Stack Roadmap 2019

Becoming a full stack web developer seems an intimidating task, especially if you are completely new to the field of coding. As a beginner, you might think that you have a whole lot to learn within a short span of time. The languages, frameworks, libraries and databases along with everything else required is a whole long list of tools of full stack web development. If you start attempting to learn everything at the same time is setting yourself up to FAIL spectacularly.  The easiest way to begin any work is to strategize with a road map. A road map is the best way to kick start your attempt to become a full stack web developer.

Tackle each layer one by one. Your objective should be to learn the bare minimum skill set so that you can start experimenting and honing your learned skills. Once you have mastered the basics, you can go ahead and learn full stack technologies which will give you an edge over other people. Follow a structured path and equip yourself steadily rather than trying to learn all over the web development spectrum.

This road map has multiple sections and is the go-to guide for organizing and selecting technologies to learn. The article mainly benefits the noobs but is also useful to the professional coders looking to become a full stack web developer. If you already have knowledge of some of the technologies we are going to talk about here, skip to the sections that will be useful to you. Feel free to customize this road map to suit your needs.  

Front end technologies roadmap for a full stack web developer

You can start by learning the technologies required for the presentation or the front end layer.  Follow this roadmap strategy if you wish to master front end development requisites. There are again the must learn, should learn and the value additions.

Basic languages

HTML- the HyperText Markup Language is the most basic and must know for any website you are contriving. You define and structure the content of a website.

CSS- this is used for styling websites and adding layouts, fonts and colours.

SQL- Structured Query Language, this is a basic language that is used for database management.

Front-end frameworks

BootStrap- An open-source toolkit for developing responsive, mobile first projects. Uses HTML,CSS and JavaScript. It helps design the website faster and easier. It has design templates for forms, buttons, tables, navigation etc., It also supports JavaScript plugins.

AngularJS- This a structural framework for dynamic web apps. The JavaScript-based open source web framework is maintained by Google and a community of corporations and individuals. They address challenges in a single-page application. It allows usage of HTML as the template language. It data-binding and dependency reduce the amount of coding required substantially.

ReactJS- A JavaScript library maintained by Facebook and a group of companies as well as individual developers. React is optimal for fetching fast-changing data that needs to be recorded. It is used for building user interfaces for single page applications. It allows users to create reusable UI components.

VueJS-This is yet another open-source JavaScript framework for single page applications and UIs.It is very compact in size and high on performance. The best option for new coders, it offers hand-picked the choicest features of other frameworks like Angular and React. It is known as the most approachable framework today.

Other programming languages required by a full stack developer:

You need to be proficient in multiple programming languages as most of the core processes for any business have to be written in them. It is not possible to master all of them in a short time, so we have a list of languages for you to begin with.

JavaScript-  It is a just-in-time compiled programming language. It helps in adding dynamic features to your website is the predominant usage of JavaScript. This is used for both front end and back end operations. The JavaScript basics are easy to learn. Many of the front-end as well as back-end frameworks, like NodeJS and AngularJS,  use JavaScript. It is widely used for aplication like chatbots using full stack technology.

TypeScript- Developed and maintained by Microsoft for development of large applications. A prerequisite if you want to learn Angular, this has recently become very popular. This is an addition to JavaScript and is always used along with JavaScript for features like type checking.

Python- This is a high-level, general-purpose language. It can be used on a server to create web applications, mathematics and server scripting. It connects to databases to read and manipulate files. It was designed for readability and runs on an interpreter system. It can also be used in a procedural, object-oriented or functional way.

Ruby- A dynamic, open source language, it is easy to learn and code. It focuses on productivity and simplicity.it can be used for web applications, servers, system utilities, backups and database works.

PHP- The most popular scripting language, it can be embedded into HTML. PHP scripts can only be interpreted on a server where PHP is installed. It is used to collect form data, send or receive cookies amongst other functions.

Back end technologies roadmap for a full stack web developer.

Developers need a back end framework so that an application can be created. It is the script-side of a dynamic application. A lot of options are available for back end frameworks.

Express-Express.js is a framework and is used as a web application for Node.js. It is a module of the NodeJS. It can be used for apps that are based on servers that will listen for connection requests from clients. It can be used for single-page, multi-page, and hybrid web applications. It is fast, easy to use and assertive.

NodeJS-This is an open-source, cross-platform in nature, that is runs across various platforms. it is a JavaScript runtime environment that executes JavaScript outside a browser.

Django- This is a high-level Python web framework that follows model-template-view architecture. It is used to simplify the creation of complex, database-driven websites. It is fast and promotes a clean design.

Ruby on Rails- This is a server-side web application framework based on the Ruby language. It provides default structures for databases, web services and web pages. It uses model-view-controller architecture. This is comparatively hard to learn as you have to learn multiple and independent concepts.

Database systems roadmap.

In today's scenario, there are tons of databases. Each company develops its own databases according to their requirements.

The objective of this roadmap is to learn and become a database administrator.

MySQL, SQLite, Postgres- These are Relational Database management system, and the data is stored in table-like schemes. This is good to store business data. These use SQL

MongoDB, Cassandra, Apache storm, Sphinx- These are the NoSQL databases. Their only commonality is that they do not use a relational database scheme. This type of database covers a wide range of technologies and can be used to find key-value DB, graph DBs, streaming DBs etc.,

VoltDB, MemSQL- These are a new kind of database, the NewSQL. They follow the relational scheme but instead of disks, they use memory. the advantage is that they outperform the traditional RDBMS but the limited amount of memory available is definitely a downside to this type of database.

Recommended additional skills for a full stack web developer.

Git- The most popular distributed version control system. It is fast and efficient. It has the capacity to handle small to very large projects. It is used to coordinate between programmers as well as track any changes made to any code stored in its repository. Check out the git basics before getting started. GitHub is the most widely used code repository and thus a must learn for an aspiring coder.

Machine Learning- A subset of AI, it is a top trending topic in 2018, machine learning is now being incorporated into various industries. It has entered the web development field as well. This provides the ability to learn and improve without being explicitly programmed. This is a good-to-learn skill for a full stack web developer.

SSH- The secure shell protocol is used to operate network services securely over an unsecured network. The SSH provides a secured remote login from one computer to another. It ensures the privacy and integrity of the data.

HTTP/HTTPS-HyperText Transfer Protocol (HTTP) is the protocol used by the world wide web. it defines how messages are transmitted, the actions taken by the Web servers and browsers when responding to commands. HTTPS is the secured version of HTTP. Here, the communication protocol is encrypted using Transport Layer Security. It ensures protection against man-in-the-middle attacks and eavesdropping.

Linux command-line basic-Having this skill is not a must but one you should definitely have. It is not necessarily easy or hard to learn and saves a lot of time. The job that otherwise consumes a lot of time when done manually, like organizing items on the back-end will be over very fast.

Data structures and algorithms-Data structures are just ways to store the data while an algorithm is a generic approach methodology to solve a problem or requirement. Every programmer needs to be familiar with these concepts. By themselves, they are not a core skill, but the more intuitive you are about these, the easier it is to solve issues or add requirements. The impacts are felt in efficiency, scalability and performance of an application. As a full stack developer, this will help immensely.

Character encoding-This is a must learn if you are planning on developing global applications. If there is no proper character encoding, you might end up with unreadable text on display, the data will not be properly processed and your content may not be found by the search engines.

Use this road map and start by equipping yourself on these basic to intermediate skills required to become a successful full stack developer. Keep adding to your skills to give more value- addition to your role and by extension to your organization.

Speedy Python 3 Developer - Create Calculator App in 1 hour ##FreeCourse ##FreeUdemyCourses #app #Calculator #Create #developer #Hour #Python #Speedy Speedy Python 3 Developer - Create Calculator App in 1 hour You're here because you're ready to learn Programming from basics i.e. Python Application Development. This course is designed for beginners point of view and thus does not require any prior knowledge about programming or python. At OneLit we believe in knowledge and thus this course is designed to teach students with examples. You are on the go and want to instantly learn python programming from scratch and thus this course will help you in learning python from zero by developing a calculator application. I'm here because I'm the answer to all your questions. I would love to share my secrets and knowledge with you and help you guys to setup an environment for your application development and programming studio. Welcome to OneLit Speedy Python Development Expert! Certification! OneLit Certifications are recognised world wide and once you have completed the course, you will be given a certification called 'OLCSPDE' i.e. OneLit Certified Speedy Python Development Expert. Zero Knowledge required - Noob Friendly Course The course is a noob friendly course and thus you don't need any skills required i.e. zero programming knowledge skills or zero python skills. You can start the course and after ending the course, you will be ready with your very first calculator application. We’ve left no stone unturned.  I guarantee, this is THE most thorough, laser-focused and up-to-date course available ANYWHERE on the market - or your money back. The course is specially designed for beginners who have zero knowledge about python and zero knowledge about programming. We will be starting from lab setup and moving forward. Here are 6 reasons why python is used and why you are right. 1. Python Has a Healthy, Active and Supportive Community   - For obvious reasons, programming languages that lack documentation and developer support just don’t fare well. Python has neither of those problems. It’s been around for quite some time, so there’s plenty of documentation, guides, tutorials and more. Plus, the developer community is incredibly active. That means any time someone needs help or support, they can get it in a timely manner.  2. Python Has Some Great Corporate Sponsors  - It helps big time when a programming language has a corporate sponsor. C# has Microsoft, Java had Sun and PHP is used by Facebook. Google adopted Python heavily back in 2006, and they’ve used it for many platforms and applications since.  3. Python Has Big Data  - The use of big data and cloud computing solutions in the enterprise world has also helped skyrocket Python to success. It is one of the most popular languages used in data science, second only to R. It’s also being used for machine learning and AI systems and various modern technologies.  4. Python Has Amazing Libraries  - When you’re working on bigger projects, libraries can really help you save time and cut down on the initial development cycle. Python has an excellent selection of libraries, from NumPy and SciPy for scientific computing to Django for web development.  5. Python Is Reliable and Efficient  - Ask any Python developer — or anyone that’s ever used the language — and they’ll agree it’s speedy, reliable and efficient. You can work with and deploy Python applications in nearly any environment, and there’s little to no performance loss no matter what platform you work with.  6. Python Is Accessible  - For newcomers and beginners, Python is incredibly easy to learn and use. In fact, it’s one of the most accessible programming languages available. Part of the reason is the simplified syntax with an emphasis on natural language. But it’s also because you can write Python code and execute it much faster.  Who this course is for: Programmers switching languages to Python. Beginners who have never programmed before. 👉 Activate Udemy Coupon 👈 Free Tutorials Udemy Review Real Discount Udemy Free Courses Udemy Coupon Udemy Francais Coupon Udemy gratuit Coursera and Edx ELearningFree Course Free Online Training Udemy Udemy Free Coupons Udemy Free Discount Coupons Udemy Online Course Udemy Online Training 100% FREE Udemy Discount Coupons https://www.couponudemy.com/blog/speedy-python-3-developer-create-calculator-app-in-1-hour/

Introduction To PHP. Everything You Need To Know To Start

Introduction To PHP. Everything You Need To Know To Start #php #phpintro #phpintroduction #tutorial #phptutorial #web #webdev #serverside #backendprogramming #programmingbeginner #learntocode #coding #codingbeginner #noob #learntoprogram

PHP stands for Hypertext Preprocessor. PHP is server-side scripting language designed for web development specifically. You can embed PHP code in HTML files or vise versa HTML code can be written in a PHP file. PHP difference from a client-side language like HTML or JavaScript is that PHP code are executed on the server unlike JavaScript or HTML where code are directly rendered on the…

View On WordPress

2018-03-10 00 LINUX now

LINUX

Linux Academy Blog

Happy International Women’s Day!

Month of Success – February 2018

AWS Security Essentials has been released!

Employee Spotlight: Sara Currie, Technical Recruiter

Linux Academy Weekly Roundup 108

Linux Insider

Deepin Desktop Props Up Pardus Linux

Kali Linux Security App Lands in Microsoft Store

Microsoft Gives Devs More Open Source Quantum Computing Goodies

Red Hat Adds Zing to High-Density Storage

When It's Time for a Linux Distro Change

Linux Journal

Purism Announces Hardware Encryption, Debian for WSL, Slack Ending Support for IRC and More

Best Editor

Looking for New Writers and Meet Us at SCaLE 16x

Chrome 65, LLVM 6.0.0, Tumbleweed, Kubernetes and More

Building a March Madness Bracket in PHP

Linux Magazine

OpenStack Queens Released

Kali Linux Comes to Windows

Ubuntu to Start Collecting Some Data with Ubuntu 18.04

CNCF Illuminates Serverless Vision

LibreOffice 6.0 Released

Linux Today

How to Install ActiveMQ Message Broker on Debian 9

Chromebooks Getting All-New Wallpaper Picker and Support for Exporting Passwords

Hybrid cloud security fundamentals: 4 things to know

20 questions DevOps job candidates should be prepared to answer

How to set up a print server on a Raspberry Pi

Linux.com

A Comparison of Three Linux 'App Stores'

Supercomputing under a New Lens: A Sandia-Developed Benchmark Re-ranks Top Computers

The RedMonk Programming Language Rankings: January 2018

LFD420 Linux Kernel Internals and Development

LFD430 Developing Linux Device Drivers

Reddit Linux

Joey Hess: prove you are not an Evil corporate person

Ubuntu based thin client made with your own hands

Noob advice for installing mint or ubuntu

Ubuntu Budgie 18.04 "Beta 1" Release Notes

Developer Tips: Branding Your App — elementary OS blog

Riba Linux

How to install SwagArch GNU/Linux 18.03

SwagArch GNU/Linux 18.03 overview | A simple and beautiful Everyday Desktop

How to install Nitrux 1.0.9

Nitrux 1.0.9 overview | Change The Rules

Pixel OS 1.0 "Apu" Public Beta 1 overview | Meet Pixel OS

Slashdot Linux

Half of Ransomware Victims Didn't Recover Their Data After Paying the Ransom

Twitter Exploring Letting Everyone Get a Blue Tick For Verification, CEO Jack Dorsey Says

Researchers Provide Likely Explanation For the 'Sonic Weapon' Used At the US Embassy In Cuba

The Hitchhikers Guide To the Galaxy Returns With the Original Cast

Fake News Spreads Faster Than True News On Twitter -- Thanks To People, Not Bots

Softpedia

Opera 51.0.2830.55 / 52.0.2871.9 Beta / 53.0.2885.0 Dev

Mozilla Firefox 58.0.2 / 59.0 Beta 14

Evolution 3.26.6

Evolution 3.28.0 RC

Evolution Data Server 3.26.6 / 3.28.0 RC

Tecmint

Learn Ethical Hacking Using Kali Linux From A to Z Course

Exodus – Safely Copy Linux Binaries From One Linux System to Another

How to Setup iSCSI Server (Target) and Client (Initiator) on Debian 9

How to Install Particular Package Version in CentOS and Ubuntu

How to Enable and Disable Root Login in Ubuntu

nixCraft

400K+ Exim MTA affected by overflow vulnerability on Linux/Unix

Book Review: SSH Mastery – OpenSSH, PuTTY, Tunnels & Keys

How to use Chomper Internet blocker for Linux to increase productivity

Linux/Unix desktop fun: Simulates the display from “The Matrix”

Ubuntu 17.10 no longer available for download due to LENOVO bios getting corrupted

How to make friends by insulting their kill scores...

For some reason when I think of digital gaming I can't go past Pokemon Go. ‘The game works by using your phone’s GPS for your real-world location and augmented reality to bring up those cool-looking Pokémon on your screen, overlaid on top of what you see in front of you’ (Lee, S 2016). Very interesting in terms of community because it brings the digital community members face to face as part of the game. When battling other players you had to physically be standing near them. There was a lot of online hype about Pokemon Go, with Facebook groups and Subreddits created to organise mass meetups for the community of players. One such event in Chicago attracted interest from thousands of people (Tassi, P 2016). You also can't forget the Facebook groups that shared where players had found certain Pokemon.

Jim Sterling (2013) defines some rules for online gaming that pretty much sum up everything I've ever heard about gaming - as I'm not a gamer myself.

Online gaming is serious

New people are terrible (also known as ‘noobs’)

Popular game features should be called cheap

Things that kill you should be called cheap

Lag is what makes you lose (never lack of skill)

If you're losing really badly - it must be a hackers fault

The word ‘gay’ can be used to describe everything and anything

Singing on your headset is definitely acceptable

Insulting people is key

If someone on your team scores - they've stolen your kill

This code represents a little bit of reality, lots of gamers make fun of each other online but most official gaming codes of practise will define acceptable and not acceptable behaviors, these are usually a general reflection of the real community that the person/people who wrote the code lives in. For instance if I was writing a code, I would include something to note that racism is not acceptable, because I live in a society where racism isn't acceptable but it is still an issue. Julien Wera (2017) discusses the challenges of managing an online gaming community and recommends the appointment of a Community Manager, a paid role implemented by the game developer. This person is the one who would write the code of practise, with main piece of advice being to think of anything that could happen, if the code changes too often it could lose its credibility.

Wera (2017) states that “people try your game because of the gameplay, the graphics, the reputation or a good marketing campaign, but they keep playing because of the people they play with”, the importance of community is huge and something that does need to be well understood for the game developers.

Thanks for reading

- Erin

Sources:

Lee, S 2016, ‘What is Pokemon Go and why is everyone talking about it’, Lifehacker, 7 November, viewed 1 February 2017, <http://lifehacker.com/what-is-pokemon-go-and-why-is-everyone-talking-about-it-1783420761>.

Tassi, P 2016, ‘On The Ground At Chicago's Massive 'Pokémon GO' Meet Up, Deflated By Server Problems’, Forbes, 18 July, Viewed 1 February, <http://www.forbes.com/sites/insertcoin/2016/07/18/on-the-ground-at-chicagos-massive-pokemon-go-meet-up-deflated-by-server-problems/#1c1769d5db9a>.

Sterling, J 2013, ‘10 Golden Rules of Online Gaming’, Destructoid, 10 May, viewed 2 February 2017, <https://www.destructoid.com/ten-golden-rules-of-online-gaming-64474.phtml>.

Wera, J 2017, Online Community Management: Communication Through Gamers, Gamasutra, viewed 2 February 2017, <http://www.gamasutra.com/view/feature/3603/online_community_management_.php?print=1>.

/lion php?mid=101593 i'm laughing so hard at this king's description. why do noobs get mad at people using their shitty lions for fodder? :y