|Dynamic Component Programming with OSGi||Kriens|
|Essential PHP Security||Shiflett|
|Proxy and load balancing in Apache||Hammad|
|Scalable Internet Architecture||Schlossnagle|
Apache Felix is an incubator for the OSGi specifications (JSR 232/291). These specifications provide a dynamic component model to Eclipse, Nokia phones, Enterprise servers (Apache Directory Server), BMWs, and numerous embedded and desktop applications. Many OSS groups are evaluating the use of OSGi. Components provide services that are dynamically discovered and bound to services from other components. This model allows for very efficient dynamic software architectures which are easily deployed and managed: dynamically without reboot. There are three open source implementations and many commercial ones. This tutorial teaches you how to leverage the OSGi dynamic component model in real world applications. Attendants should bring a laptop with Eclipse 3.2 to do a number of exercises with OSGi.
This tutorial teaches you how to develop secure web applications with PHP. You'll see attacks such as Cross-Site Scripting (XSS) and SQL Injection demonstrated, and you'll learn effective safeguards that you can use to prevent such attacks. Other topics covered include:
1. Session Hijacking
2. Session Fixation
3. Cross-Site Request Forgeries
4. HTTP Response Splitting
5. Email Injection
6. Security Principles
7. Best Practices
This tutorial is a must for PHP developers who need to be aware of web application security concerns.
A practical production environment requires more than just setting up the web server. Some advanced and useful configurations require accessing a server, sitting maybe behind a firewall, or only allowed to be accessed by local machines, through tunneling requests via a proxy server. Moreover, it is also desirable to balance the load among a cluster of web servers. This short tutorial session will demonstrate Apache built-in capabilities to achieve such tasks by mod_proxy and other related modules such as mod_proxy_balancer and mod_proxy_ajp. The demonstration will be targeted towards medium level techies and will include practical exercises and scenarios where the users may practice them at their own.
We will discuss both good and bad design methodologies for building new sites, scaling growing sites up and scaling shrinking sites down. Primarily example-based, the presentation will show the progression from anecdotal conclusions to real-world practical results and how often the two are askew. We will discuss in detail three distinct but related problems in clustered web architectures:
1. high availability and load balancing
2. caching static and dynamic content
3. distributed logging and troubleshooting.