So, now, as with many of these "spark of insight" ideas, it may very well be that it has been thought of and discarded over and over again, and I am just one of the many who will soon find myself with a sheepish grin and a dunce cap on my head... But also typical of one with with the heat of inspiration behind me, I will convieniently ignore this possibility and continue on like I have just...
on Apr 27, 2006
Pete Freitag writes up 20 ways to Secure your Apache Configuration. Now, all 20 tips are useful to help make Apache less insecure but they certainly don't make an Apache installation actually "secure."
First off, note clearly how many things you have to go out of your way to turn off. That is, look at all of the extraneous, insecure junk that is installed and configured as part of a default...
on Dec 6, 2005
These days I'm finishing another course about Java and JDBC - everything was ok during the course and I decided to deploy the complete sample application to my students through their mailing list. The project is a simple Swing/JDBC application accessing a few tables in the MySql.
When I created the deployable JAR I detected a surprising detail: I canÂ´t distribute my application in a single JAR...
on Nov 23, 2005
I've been using Java WebStart as an application deployment tool for, well, several years now and it just gets better and better. In practice, I haven't looked at the Java WebStart details, like JNLP file contents and such, since my first deployment short off adding new "component" descriptions and the like, as described in the blog entry JXTA, WebStart and You.
Well, it does pay to...
on Oct 21, 2005
A few months ago, I blogged about how we plan to revamp the user experience in Java Web Start and Java Plug-in in Mustang. After considering all the inputs from the Java community, we have decided to make the new security dialogs available in the upcoming J2SE 5.0u6. Here are some screenshots from 5.0u6:Signed application with valid certificate:
More information on the valid certificate:...
on Oct 14, 2005
Yes, I have to admit I do not use patterns and I hardly know any of them. Seven years ago I bought the book "Patterns in Java" and looked at it only to find out that most of them I already knew and had already applied. So this book went to the shelf to remain there until, I think, it was recycled. So far I never needed patterns to do my job and for most part there are no patterns that deal with...
on Sep 9, 2005
I'm in San Francisco, looking forward to Java One.
While preparing, and looking through some Sun marketing emails, it occurs to me that Solaris 10 is a competitive alternative to my Fedora Core 3 home development and test machine.
Free to download and test.
Free 30 days of updates.
Java stuff pre-installed, and lots of it.
Update subscription for only $120 / year (per CPU).
on Jun 26, 2005
It's common these days to provide a Web Start version of your application that can run on a machine without the need to download the bundle distribution manually. If your application needs special access privileges, you will need to sign your jar file(s) and then ask user to allow installing this application. Here are the basic steps to do the job.
First, you need to create a key store. For this...
on May 20, 2005
Hmm. Perhaps it should have been mouth.getLocation() instead. That would present a more consistent BadJoke API. :)
For the last two weeks I've been talking about MiniApps: small programs that utilize rapid web deployment, do simple things well, make our lives easier, and brew
on Sep 10, 2004
It's gonna be a busy week so I'll keep this short. I've been thinking a lot about moveable applications and the idea of rich clients. This is mainly on my mind because the Flying Saucer team has been hard at work on the next version of XHTMLRenderer. (We're shooting for an August 31st release) An embedded rendering component has pretty much one core use: applications with both GUI and html...
on Aug 23, 2004
I had the privilege of writing the forward to a new book, Enterprise Java Development on a Budget: Leveraging Java Open Source Technologies. I just got their book in the mail. I'm proud of what I wrote, so I thought I'd share it here.
J2EE development is hard. I have been developing with Java for the past 6 years, and there are areas of the enormous API that I have not touched. J2EE covers...
on Apr 28, 2004
I recently read on Slashdot (something I promised myself I was
going to do less) about Miguel de Icaza's comments on Longhorn.
It was a pretty interesting read and makes me think I should read up
on XAML and Avalon, Microsoft's new technologies for making
advanced rich web applications. What struck me as particularly jarring,
where someone asked about Java as a...
on Apr 26, 2004
Following up on my earlier entry on Java for PalmOS Devices, Mel Seyle wrote me to ask:
Does this mean that I can now directly download MIDlets to my Palm Tungsten and run them? I used to have to convert my Java programs to Palm PRC files before uploading them on my Palm Vx to run under the KVM.
I don't have a Java-enabled Tungsten myself, but in preparing
a follow-up to my earlier entry (Java...
on Mar 26, 2004
Here is a write up I did about probably the best solution to providing cache and compression support for your web application. If you don't know what a cache or compression filter is, read this article, now. If you do, it is still worth taking a look. Several questions have been asked and answered about the practical use of these filters and how they compare to alternative choices that offer the...
on Nov 21, 2003
Hey all. Been a long time I rapped at ya, so here it goes.
I was heading over to barnes and nobles tonight to pick up a copy of Enterprise Application Patterns - a book about design patterns for message systems that I wrote a chapter for (www.eaipatterns.com). They didnt have it in yet (poop!), but while I was there, I thought I would check out some CDs (Outkast, Aphex and Seal if anyone is...
on Oct 20, 2003
I was just recently faced with taunting task to revamping the transaction handling of the J2EE server without breaking it but improving performance and removing any resource leaks. Already two developers tried to do this but had problems to understand the existing code in the first place and so I failed, too. If we could not improve the code we had to dump the implementation and start all over...
on Oct 10, 2003
A colleague of mine just pointed out that in Richard Monson-Heafel’s EJB book (3rd edition) configurations like Stateless Session Bean (SLSB) -> Stateful Session Bean (SFSB) are considered meaningless. I understand that any EJB book cannot deal with all possible scenarios otherwise you need a truck to take the book home but I find it too interesting not to talk about. Luckily I can discuss in my...
on Oct 2, 2003
Finally I found time for a technical log here at Java.net. This time I want to discuss a shortcoming of the EJB specification and how they can be fixed to make the life of EJB developers and application server administrators easier and the deployed applications more robust.
Originally the EJB specification assumed that the applications are deployed at startup of the application server and the...
on Sep 30, 2003
XML and SOAP messages may mask the the underlying infrastructure from developers but the data center still needs to be brand aware.
There are many conversations on the topic of Java vs. .NET and how Web Services might be the holy grail or glue to bring it all together. Philip Brittan points out some interesting things in his Microsoft and Web Services weblog entry that got me to thinking about...
on Sep 23, 2003
I recently wrote an article, "Create Desktop Applications with Java-Based Web Technologies" for O'Reilly ONJava.com, and I was just pondering some of the feedback I got. (If you're too busy to read the article, basically I write about using a web application in a bundled Tomcat to build a desktop application w/installer).
First off, people seem to think that bandwidth is *awfully* cheap nowadays...
on Sep 22, 2003