亚洲精品一二,久久精品国产免费观看,色综合久久中文综合久久牛

无风之雨 — Fri, 09 Jun 2006 03:00:00 GMT

(t��ng) (t��ng) (t��ng) (t��ng) 我们打算为用��h��讑֍�独的虚拟��L��服务器，可以让企业自��M��传jsp、htm、php�{�程序。其中resin用来做jsp的容器�?br /> (t��ng) (t��ng) (t��ng) (t��ng) �׃��是用戯��主通过FTP上传�E�序�Q�我们必��L��制这些程序可以执行的权限�Q�不能让用户随便��览��盘?sh��)��的文�g�Q�但又要能让resin可以正常�q�行。比如：(x��)/data/user_a目录中的�E�序�Q�只能在/data/user_a目录�?qi��ng)其子目录中��d��Q�如果想要访问其他目录，��没有权限�?br /> (t��ng) (t��ng) (t��ng) (t��ng) 通过研究resin的文��以�?qi��ng)JAVA的机�Ӟ��我认��实现以上构想�Q�可以通过使用java权限��理器来构徏一个resin的沙��来对java的具体操作进行授权�?br />参考文��：(x��)http://www.caucho.com/resin-3.0/security/securitymanager.xtp �Q?a >http://www.jscud.com/srun/news/viewhtml/3_2005_10/148.htm

(t��ng) (t��ng) (t��ng) (t��ng) 当我认�ؓ(f��)胜利在望的时候，发现resin好像不支持grant codeBase "file:xxxx �?br />
grant codeBase "file:/data/ftpdata/user01.test.com/-" {
(t��ng)permission java.io.FilePermission "/data/ftpdata/user01.test.com/-", "read,write,delete";
};
(t��ng) (t��ng) (t��ng) (t��ng) 上面的语句，语法上没有问题，但就是不起作用。那个codebase目录下的文�g�Q�对本目录没有�Q何权限�?br />
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) resin的官方论坛里面，有�h�?001�q�_(d��)��针对resin1.2.5��提��Z��(ji��n)和我一�怸��L(f��ng)��疑问�Q?a >http://www.caucho.com/support/resin-interest/0105/0106.html�Q�，作者发现问题是�׃��resin的classloader是非安全的，因此改了(ji��n)resin原文件后解决�?ji��n)问题�?a >http://www.caucho.com/support/resin-interest/0105/0112.html�Q�，但是我看resin3的源代码�Q�里面已�l�基于java.security.SecureClassLoader�Q�因此应该不是这个原因了(ji��n)�?br /> (t��ng) (t��ng) (t��ng) (t��ng) 以下是我的resin.policy文�g�Q?/p>

grant codeBase "file:${java.home}/lib/-" {
(t��ng)permission java.security.AllPermission;
};

grant codeBase "file:${java.home}/jre/lib/-" {
(t��ng)permission java.security.AllPermission;
};

grant codeBase "file:${resin.home}/lib/-" {
(t��ng)permission java.security.AllPermission;
};

grant {
(t��ng)permission java.util.PropertyPermission "*", "read";
(t��ng)permission java.io.SerializablePermission "enableSubstitution";
(t��ng)permission java.lang.reflect.ReflectPermission "suppressAccessChecks"; (t��ng)
(t��ng)permission java.lang.RuntimePermission "accessClassInPackage.*";
(t��ng)permission java.lang.RuntimePermission "getClassLoader";
(t��ng)permission java.lang.RuntimePermission "accessDeclaredMembers";
(t��ng)permission java.lang.RuntimePermission "modifyThreadGroup";
(t��ng)permission java.lang.RuntimePermission "setContextClassLoader";
(t��ng)permission java.lang.RuntimePermission "setIO";
(t��ng)permission java.lang.RuntimePermission "stopThread";
(t��ng)permission java.lang.RuntimePermission "createClassLoader";
(t��ng)permission java.lang.RuntimePermission "getProtectionDomain";
(t��ng)permission java.lang.RuntimePermission "defineClassInPackage";
(t��ng)permission java.security.SecurityPermission "putProviderProperty.SunJCE";
(t��ng)permission java.security.SecurityPermission "insertProvider.SunJCE";
(t��ng)permission java.util.logging.LoggingPermission "control";
(t��ng)permission java.lang.RuntimePermission "getAttribute";
(t��ng)permission java.util.PropertyPermission "jaxp.debug", "read";
(t��ng)permission ognl.OgnlInvokePermission "invoke.*";
(t��ng)permission java.net.SocketPermission "localhost:3306","connect";
(t��ng)permission java.io.FilePermission "${resin.home}/-", "read";
(t��ng)permission java.io.FilePermission "${java.home}/-", "read";
(t��ng)permission java.io.FilePermission "/tmp/-","read,write,delete";
(t��ng)permission java.io.FilePermission "/tmp","read,write,delete";
(t��ng)permission java.io.FilePermission ".","read";
(t��ng)permission java.io.FilePermission "/home/apps/java/jdk/lib/tools.jar","read";
(t��ng)permission java.io.FilePermission "/bin/sh", "read,execute";
};

//以下语句没有��M��作用�Q?data/ftpdata/user01.test.com/下的jsp对这个目录没有读的权�?br />grant codeBase "file:/data/ftpdata/user01.test.com/-" {
(t��ng)permission java.io.FilePermission "/data/ftpdata/user01.test.com/-", "read,write,delete";
};

无风之雨 2006-06-09 11:00 发表评论

无风之雨 — Tue, 16 May 2006 08:50:00 GMT

要了(ji��n)解GPL�Q�一般地�Q��?zh��n)�没有必要耐心(j��)阅读原版的GPL协议�Q�因�?GPL 无非交待�?ji��n)几个原则�?x��)

��保软�g自始至终都以开放源代码形式发布�Q�保护开发成果不被窃取用作商业发售。�Q何一套��Y�Ӟ��只要其中使用�?ji��n)�?GPL 协议保护的第三方软�g的源�E�序�Q��ƈ向非开发�h员发布时�Q��Y件本�w�也��p��动成为受 GPL 保护�q�且�U�束的实体。也��是��_(d��)��此时它必��d��放源代码�?
GPL 大致��是一个左侧版权（Copyleft�Q�或译�ؓ(f��)“反版权”、“版权属左”、“版权所无”、“版责”等�Q�的体现。你可以��L��所有原作的版权信息�Q�只要你保持开源，�q�且随源代码、二�q�制版附�?GPL 的许可证��p��Q�让后�h可以很明��地得知此��Y件的授权信息。GPL �_�N��是�Q�只要��软�g在完整开�?的情况下�Q�尽可能使��用者得到自由发挥的�I�间�Q��软�g得到更快更好的发展�?
无论软�g以何�U��Ş式发布，都必��d��旉��上源代码。例如在 Web 上提供下载，��必��d��二进制版本（如果有的话）(j��)下蝲的同一个页面，清楚地提供源代码下蝲的链接。如果以光盘形式发布�Q�就必须同时附上源文件的光盘�?
开发或�l�护遵��@ GPL 协议开发的软�g的公司或个�h�Q�可以对使用者收取一定的服务费用。但�q�是一句老话——必��L��偿提供��Y件的完整源代码，不得��源代码与服务做捆绑或�Q何变相捆�l�销售�?

无风之雨 2006-05-16 16:50 发表评论

最惌��的�R

无风之雨 — Sun, 14 May 2006 03:28:00 GMT

(t��ng)

无风之雨 2006-05-14 11:28 发表评论

关于IE无法打开INTERNET站点的错

无风之雨 — Wed, 19 Apr 2006 10:14:00 GMT

(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) 今天新页面上�U�，很多同事报告说页面打开��C��半，�l�常跛_��无法打开Internet站点的错误，然后��面�?x��)蟩转到DNS错误的页面�?br />
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng)
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng)
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) �q�个问题我以前遇到过�Q�一直没有详�l�的��L��I�原因，只是以�ؓ(f��)是服务器关闭�q�接太快的原因。今天发现这个问题出的很频繁�Q�服务器斚w��没有改什么，只是上传�?ji��n)新的页面程序而已�Q�应该不�?x��)和服务器有兟뀂在寚w��面进行分析，�q�搜索了(ji��n)一下网上，发现原来是js在document�q�没完全load完的时候就试图改变其值导致�?br />
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) 因此对js做如下改变：(x��)

原js�Q?br />
(t��ng) (t��ng) (t��ng) (t��ng) window.settimeout("go()",500);
(t��ng) (t��ng) (t��ng) (t��ng) function go(){
(t��ng) (t��ng) (t��ng) .......
(t��ng) (t��ng) (t��ng) (t��ng) }

�Ҏ(gu��)��Q?br />
var go_i=window.setInterval("go()",500);
function go(){
(t��ng) (t��ng) (t��ng)if(document.readyState=="complete"){
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) window.clearInterval(go2_i);
(t��ng) (t��ng) (t��ng) }
(t��ng) (t��ng) (t��ng) (t��ng)else return;
(t��ng) (t��ng) (t��ng) ........
}
目的��是让他一定要在document完成后才执行那个操作

无风之雨 2006-04-19 18:14 发表评论

document.domain与域名的问题

无风之雨 — Thu, 13 Apr 2006 03:54:00 GMT

以前如果要��iframe里面的脚本能讉K��parent的内容，但iframe和parent的二�U�域名相同，那一般都�?x��)在两者都写上document.domain="xxx.com" 以放宽访问权限�?br />
今天发现�Q�如果iframe和parent在同一个三�U�域名下�Q�比如都是aa.bb.com�Q�那设了(ji��n)document.domain反而会(x��)造成讉K��拒绝�?br />
查了(ji��n)下MSDN�Q�有如下解释�Q?br />

Remarks

The property initially returns the host name of the server from which the page is served. The property can be assigned the domain suffix to allow sharing of pages across frames. For example, a page in one frame from home.microsoft.com and a page from www.microsoft.com initially would not be able to communicate with each other. However, by setting the domain property of both pages to the suffix "microsoft.com", you ensure that both pages are considered secure and access is available between the pages.

When you set the domain property, use the domain name determined by the server rather than by the client browser.

All the pages on different hosts must have the domain property explicitly set to the same value to communicate successfully with each other. For example, the value of the domain property of a page on the host microsoft.com would be "microsoft.com" by default. It might seem logical that if you set the domain property of a page on another host named msdn.microsoft.com to "microsoft.com," that the two pages could communicate with each other. However, this is not the case unless you have also explicitly set the domain property of the page on microsoft.com to "microsoft.com".

Furthermore, this property cannot be used to allow cross-frame communication among frames with different domain suffixes. For example, a page in one frame from www.microsoft.com and a page in another frame from www.msn.com would not be able to communicate with each other even if the domain property of both pages was set to the suffix "microsoft.com".

Security Alert (t��ng) (t��ng)Using this property incorrectly can compromise the security of your Web site. Set the domain property only if you must allow cross-domain scripting. Use a value determined on the server. Setting this property to a value determined on the client (like through the location object) could expose your site to attack from another site through Domain Name System (DNS) manipulation. For more information, see Security Considerations: Dynamic HTML.

For more information on domain security, see About Cross-Frame Scripting and Security.

无风之雨 2006-04-13 11:54 发表评论

无风之雨 — Tue, 11 Apr 2006 09:54:00 GMT

今天发现�Q�在IE里面�Q�当一个域名包含_的时候，IE不会(x��)�l�这个网站发送COOKIE�Q�真变态。同事调试了(ji��n)半天�Q�才发现�q�有�q�个问题

无风之雨 2006-04-11 17:54 发表评论

我认为最好的MYSQL备䆾方式

无风之雨 — Tue, 11 Apr 2006 04:47:00 GMT

(t��ng) (t��ng) (t��ng) 要备份MYSQL�Q�很多�h用mysqldump�Q�其实这�U�方式，导出的文件是最大的�Q�导入的旉��是最久的。命令是方便的，但真正发生错误的时候，恢复效率很低�?br /> (t��ng) (t��ng) (t��ng) 我主张，另外找一台比较空闲的机器�Q�来做数据库的备份。这台机器作以下用途：(x��)

(t��ng) (t��ng) 它是��L��据库带的slave数据库群里面的一収ͼ�每天凌晨定时启动同步数据�Q�等�q�上bin-log�q�全部执行后�Q�停止同步，�q�用select * into outfile��数据全部导出成文�g�Q��ƈ且在每周的某一天，清除掉主数据库上已经同步好的bin-log�Q�以��保��盘�I�间不被log占满�?br />
(t��ng) (t��ng) 为此�Q�我写了(ji��n)3个脚本，分别执行1、启动mysql�Q�追log�Q�然后停止slave�Q?、导出全部数据库全部文�g到文�Ӟ��3、删除主数据库的log

---------------------------------------------------------------------------------------
#!/bin/bash
#readMasterMysql.sh
CHECK_MYSQL=0
/home/mysql/bin/mysqld_safe &
until [ "$CHECK_MYSQL" = "1" ]
do
(t��ng) sleep 10
(t��ng) CHECK_MYSQL=`/home/mysql/bin/mysql -uroot -e"show slave status"|awk '{if($14==$21)print "1"}'|tail -n1`
done
/home/mysql/bin/mysql -uroot -e"slave stop"
/home/script/backupMysql.sh
/home/mysql/bin/mysqladmin shutdown
WEEK=`date "+%w"`
if [ $WEEK = "5" ]
then
(t��ng) (t��ng) (t��ng) /home/script/purgeLog.sh
fi

------------------------------------------------------------------------------
#!/bin/bash
#purgeLog.sh
LOG_FILE=/home/mysql/data/master.info
DB_SERVER=`sed -n '4p' $LOG_FILE`
DB_USER=`sed -n '5p' $LOG_FILE`
DB_PASS=`sed -n '6p' $LOG_FILE`
DB_LOGFILE=`sed -n '2p' $LOG_FILE`
/home/mysql/bin/mysql -h$DB_SERVER -u$DB_USER -p"$DB_PASS" -e"purge master logs to '$DB_LOGFILE'"

------------------------------------------------------------------------------
#!/bin/bash
#backupMysql.sh
database=$1
table=$2
MYSQL_CLIENT="/home/mysql/bin/mysql -uroot --default-character-set=gbk"
MYSQL_DUMP="/home/mysql/bin/mysqldump -d -uroot --default-character-set=gbk"
OUTPUT_PATH=/date/backup
for databases in `$MYSQL_CLIENT -e "show databases"|grep -v Database`
do
if [ "$#" = "0" -o "$database" = "$databases" ] ; then
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) mkdir -p -m777 $OUTPUT_PATH/$databases/
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) $MYSQL_DUMP $databases > $OUTPUT_PATH/$databases/$databases.sql
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) for tables in `$MYSQL_CLIENT -e "show tables" $databases|grep -v Tables_in_`
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) do
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) if [ "$#" = "0" -o "$#" = "1" -o "$table" = "$tables" ] ; then
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) mv -f $OUTPUT_PATH/$databases/$tables $OUTPUT_PATH/$databases/$tables.old
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) $MYSQL_CLIENT -e "select * into outfile '$OUTPUT_PATH/$databases/$tables' from $tables" $databases
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) fi
(t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) (t��ng) done
fi
done

无风之雨 2006-04-11 12:47 发表评论

无风之雨 — Tue, 11 Apr 2006 04:25:00 GMT

一般情况下�Q�Referer和User-Agent同时为空的时候，可以认�ؓ(f��)是其他网站在扚w��采集本站数据�Q�我打算deny掉这�U�请求。不�q�apache文��里面没有提到有两个环境变量的与操作。最后chinaunix上有大侠回答�?ji��n)我的问题�?x��)

SetEnv (t��ng) (t��ng) log_flag=1
SetEnvIf Referer !"^$" (t��ng) log_flag=0
SetEnvIf user-agent !"^$" log_flag=0
...

看字面上�Q�就是如果用两个非的或来代替�?br />�q�样�Q�只要两个条件有一个不满��Q�就log_flag��׃��(x��)变掉�Q�只要它变掉�?ji��n)，��p��明不�W�合我屏蔽的规则�?br />高手��是高手�Q��ؓ(f��)什么非要苛求一定要有“与”呢�Q�两个“非”的“或”，不一栯��到要求？

学习(f��n)�?ji��n)�?br />

无风之雨 2006-04-11 12:25 发表评论

oracle到mysql的迁�U�，函数部分

无风之雨 — Tue, 11 Apr 2006 04:16:00 GMT

to_date(?, 'YYYY-MM-DD HH24:MI:SS')"
STR_TO_DATE('2003-15-10 00:00:00','%Y-%m-%d %H:%i:%s'); (t��ng) (t��ng) (t��ng) (t��ng) //格式不对�Q�会(x��)�q�回NULL

to_char(create_time,'yyyy-MM-dd')
DATE_FORMAT(create_time,'%Y-%m-%d')

sysdate
now()或者CURRENT_TIMESTAMP (t��ng)//'1997-12-15 23:50:26',��的时候，timestamp�c�d��可以指定default CURRENT_TIMESTAMP

sysdate - 7 (t��ng) (t��ng) //7天前
now()-INTERVAL 7 DAY (t��ng) (t��ng)

select * from (select .... where rownumstart
limit [start,] length

substr(productInfor,1,20)
SUBSTRING('Quadratically',5,6) (t��ng) (t��ng) (t��ng) (t��ng) //SUBSTRING(str,pos,len)

instr(str,substr,pos,index)
instr(str,substr) 或�?locate(substr,str,pos)
// 没有相对应的语法�Q�但一般情况，�q�个是和substr�l�合��h��用的�?br />//如果是str="2005-10-01"取中间的10�q�样的需要，oracle是substr(str,instr(str,'-',1,1)+1,instr(str,'-',1,2)-instr(str,'-',1,1)-1)
那在mysql里面�Q�可以试试这样SUBSTRING_INDEX(SUBSTRING_INDEX(str,'-',2),'-',-1),意思就是取�W�二�?之前的str后（2005-10�Q�，再取倒数�W�一�?之后的内�?/p>

oracle的nvl�Q�ss,dd�Q�函数在mysql中怎么实现�Q?
�{�：(x��)ifnull(ss,dd)