Schlafstörungen, nächtliche Recherche und IBM Security

Aufgrund nächtlicher Schlafstörungen recherierte ich ein wenig, denn für ein komplett neues android system image kompilieren, war ich trotzdem viel zu müde.

Dabei fand ich diese netten IBM Security Produkte und noch ein par andere Dinge:

IBM's still alive

IBM Security Trusteer Mobile SDK

Hier gibts so ein trusted mobile device (andoid, iphone, tablet) SDK (Software Development Kit), das Kompromittierungen (root, hacked, jail-breaked, untergeschobene root-CAs um SSL aufzubrechen und evtl. Staatstrojaner und ähnliches erkennt). Jedenfalls sollten Entwickler damit sicherere verteilte Anwendungen für Cloud u.s.w. hochverfügbar implemetieren können:

https://www.ibm.com/products/trusteer-mobile-sdk

Mobile device management (MDM) solutions

Das hier ist auch so eine mobile security Geschichte, die mobile Geräte Sicherheit der Mitarbeiter garantieren will. Also so kein "Nachhause-Telefonieren" durch irgendwelche untergejubelten Drittanbieter Apps, klassische End-2-EndPoint Secuirty, u.s.w.

https://www.ibm.com/security/mobile/mobile-device-management

IBM Security Products (case study fraud detection)

Dann zeigt IBM weiter noch, dass es auch eine standardisierte Fraud detection (wahrscheinlich generisch erweiterbar) kann! Ich schätze diese Fraud Detection Engine geht wahrscheinlich über Insolvenzregister, KSV, Casinosperre, Standardbonitätabfragen und dubiose exotische Prepaid oder sontige WireCreditCards hinaus und lernt kontinuierlich (à la Virenscanner):

https://www.ibm.com/security/products

nomachine.com

Zu guter letzt fand ich noch einen sicheren Terminal-Server (diesmal nicht IBM, den sich auch mal wer ansehen könnte):

https://www.nomachine.com/product&p=NoMachine%20Enterprise%20Terminal%20Server

---

Gehe jetzt wieder ins Bett, gute Nacht / guten Morgen.

Warum ich der Welt grundlegend misstraue?

Die Zeitung "Die Welt" schrieb: "Ein Forschungsteam hat sich den Erfolg der deutschen Kapitalanlage im Ausland gründlich angeschaut. Dabei hat sich gezeigt, dass die Deutschen bei ihrer internationalen Geldanlage ähnlich erfolglos sind wie bei der Anlage ihrer Ersparnisse." "Andere Länder sind mit der Anlage ihres Auslandsvermögens deutlich erfolgreicher. Seit 1975 liegt die jährliche Rendite deutscher Anlagen im Ausland um fünf Prozentpunkte unter den Erträgen, die die USA erwirtschaften, und immer noch drei Prozentpunkte unter der Rendite, die die anderen europäischen Länder im Durchschnitt erwirtschaften." "Deutsche Anlagen im Ausland besser managen Allein im Zeitraum seit der Finanzkrise hätte Deutschland ein zusätzliches Vermögen im Umfang von zwei bis drei Billionen Euro aufbauen können, hätte es sein Geld ähnlich gut angelegt wie Kanada oder Norwegen. Pro Kopf der deutschen Bevölkerung entspricht das 28.000 bis 37.500 Euro! Auf einen Schlag hätten wir ein um 50 Prozent höheres Vermögen." "Was zu der folgenden Frage führt: Woran liegt es? Darüber kann man nur spekulieren. Um uns zu verbessern, sollten wir zwei Dinge tun: weniger im Ausland anlegen und unsere Anlagen im Ausland besser managen."

Web Link: https://www.welt.de/finanzen/plus226059659/Geld-fuer-die-Steuerzahler-25-000-Euro-fuer-alle-unter-65.html Screenshot: https://photos.app.goo.gl/MrvKFzFtgbqoW6vJ8 Äh, wieso muss Deutschland sein Vermögen im Ausland inverstieren? Performance der Börsenleitindezes einiger europäischer Staaten inkl. Schweiz. Wir sehen, der DAX stieg um 254%! Jetzt mal angenommen, die Deutschen hätten ihr Geld in der Schweden oder in der Schweiz angelegt: das wären ja immer noch satte 228% oder 132%. Von Signapur oder den USA rede ich jetzt gar nicht einmal, sondern nur von Europa. Selbst bei Investitionen in den Eurostoxx oder den italienischen Leitindex wäre das noch immer ein kleines Plus von 50%. Und bitte, Italien ist nicht unbedingt das kapitalistischte Land der Welt, oder? Europäisches Land Steigerung von 22.02.2009 bis 10.02.2021: Deutschland 354,19% Schweden 328,13% Schweiz 232,96% Eurostoxx 208,29% Italien 155,45% Griechenland 14,66%

P.S.: Was mich aber wirklich wundert:

Wie in aller Welt konnte Deutschland mit dieser hohen Staatsquote so extrem gut gegenüber der sparsamen liberalen Schweiz performen. Ich vermute, es liegt an den Freihandelsverträgen, die die EU genial aushandelte.

Ich vermute: Da die deutsche Wirtschaft auf Export ausgelegt ist, ist jeder Freihandelsvertrag ein Boost im DAX.

P.P.S.: EINE KLITZEKLEINE FRAGE:

Was hindert eigentlich die Deutschen daran, sich an deutschen Unternehmen zu beteiligen? Ich mein Mtarbeiterbeteiligung ist ein etwas moderneres, aber nicht gerade sehr neues sozialistisches Konzept, das bei so Betrieben, wie der VOEST Alpine, inzwischen sogar [Geschäfsgeheimnis] und [Geschäfsgeheimnis] in Österreich und sogar inzwischen einigen US amerikanischen Unternehmen oder japanischen Unternehmen Gang und Gebe ist. Sind aber alles Industrie- oder IT- Unternehmen. (bis auf Goldman Sachs), aber Nomen est Omen und dort ist immerhin der Sachse vergoldet und nicht Paria.

Welcher Mitarbeiter oder Manager von mittel bis CEO vertraut bitte dem eigenen Unternehmen nicht? Das klingt verdammt nach "Deutscher Bank" oder? Ich kann mir nicht vorstellen, dass ein BMW Mitarbeiter den bayrischen Motorenwerken nicht vertraut oder ein VW Mitarbeiter nicht den Guys in Wolfsburg oder Ingolsstadt. Ich würde sogar T-Systems vertrauen und dort mein Geld investieren!

No global plan for generic multi-language globalization/localizaion

There is sadley no generic concept for platform and language independent multi language globalization / localization for applications.

Some case studies

Visual Studio WinForms (C#, VB)

Globalization / Localization in Windows Forms is implemented via different resource files (.resx).

ResourceManager and Resource accessors are created semi automatically from Visual Studio.

Resources in .NET

Microsoft and Stockoverflow links about resources and globalization and culture info.

https://docs.microsoft.com/en-us/dotnet/framework/resources/

https://docs.microsoft.com/en-us/dotnet/api/system.globalization.cultureinfo

https://stackoverflow.com/q/32989100/12213151

Android Studio (Java, Kotlin)

Globalization / Localization are realised in Android Studio via different language directories beyond the res folder:

Using the Translation Editor inside Resource Manager to build your translation from Android Studio GUI, see: http://blog.androidrich.com/2016/11/translation-editor-in-android-studio.html

Android supports right to left screen orientation too for arab or farsi languages.

Documentation about globalization / localization in android

https://developer.android.com/guide/topics/resources/localization

https://developer.android.com/training/basics/supporting-devices/languages

https://developer.android.com/guide/topics/resources/providing-resources

https://developer.android.com/guide/topics/resources/multilingual-support

https://stackoverflow.com/questions/59306392/how-to-obtain-strings-xml-files-for-different-languages-from-an-apk-file-androi

Razor MVC and Blazor Web

Webpages, that are build with .NET framework and deployed in IIS on windows or Apache on linux (no matter with mod_mono or something else [1]) use language and country prefix directly after FQDN and before path in url to route to different language subpages, e.g.:
https://docs.microsoft.com/en-us/aspnet/core/blazor/globalization-localization
https://docs.microsoft.com/de-at/aspnet/core/blazor/globalization-localization
https://docs.microsoft.com/fr-fr/aspnet/core/blazor/globalization-localization

Multi-language globalization in reality

In reality in the world wide web and on desktop or other applications, there are many different approaches how multi-language and globalization is implemented. Only few use a auto translation API like google.com/translate.

Prospect / outlook for standardized globalization?

I don't know. Lets use the crowd to answer that question!

Snaps, snapd,, Snap Store, snapcraft.io

Tonight in the early morn, when I tried to write(1) an open os based solution(2) to transform almost any modern personal computer or laptop(3) to a simple generic wifi router(4).

Then I unexpectedly found a  community platform, that was still unknown to me:

snapcraft.io

Snaps are there defined as  app packages for desktop, cloud and IoT that are easy to install, secure, cross‐platform and dependency‐free. Snaps are discoverable and installable from the Snap Store, the app store for Linux with an audience of millions, 

I tried first the search functionality of that platform and let's say clearly: 

The layout design looks excellent, the community is well visited, but some functions could be better. Lets look at these 2 examples: 
Searching common phrase file
Searching 1 char only d  

Search results also could be sorted more meaningful & understandable, e.g. 

1. show all results, where the search phrase  directly corresponds to the package app name /(no matter if sql like (prefix, suffix, substring), sql fulltext match or Levenstein distance.
2. then show all results, where the search phrase is found in the shown package descripton
3. at least show all results, that appear like a magical fog or smoke for the user. I know, that your search function is probably not returning total random or bad fuzzy hit results, but I guess the search algorithm searches in fields, which are not shown in search result view.

Snapcraft web site provides at the moment the snap app package search page, a store, tutorials, documentation, developer blog, forum and IOT special bulletin.

Conclusio: Snapcraft has surly more potential, but additional functionality must be added and especially a more clear vision and road-map needs to be specified, followed and permanently filled with life. (Under my point of view, without any additional improvements, vision and road-map the project and the community won't grow up and then after some time, this will remain as small circle of developer project or even become orphaned.)
So far I see this nevertheless as an good opportunity for developers and community to get seen and to receive good jobs offers.

Simply said: Thou must have very soon an idea, where this should go and what exactly you want with  it. If thou don't want to expand and keep this project as a nice and gentle private hobby, then you can keep everything and don't have to change anything. But if you want to expand, become at least a small player for long time, ...

---

State management in Blazor

There is a sufficient document for state management in Blazor.
Here is a quick & fast work through with all prerequisites, how to get state management in Blazor working.

Example with Blazored.LocalStorage package

Install nuget package for your project

# Find packages providing a "Blazored.LocalStorage" 
Find-Package Blazored.LocalStorage

# install "Blazored.LocalStorage" 
Install-Package Blazored.LocalStorage -Project YourProject# alternatively

Add Blazored.LocalStorage to ConfigureServices at your Startup.cs

using System;
/* ... */
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Http;
/* ... */
using Blazored.LocalStorage;

public class Startup {
  /* ... */  
  public void ConfigureServices(IServiceCollection services)  { 
    /* ... */
    services.AddRazorPages(); 
    services.AddServerSideBlazor();
    /* ... */    
    services.AddBlazoredLocalStorage();
    /* ... */
  }
}

Using LocalStorage inside a razor page / control

@page "/MyPage"
using Blazored.LocalStorage
@inject ILocalStorageService localStorage
@code {
  /* ... */
  Dictionary<string, string> sessionDict;
  /* ... */
  protected override async Task OnAfterRenderAsync(bool firstRender)  { 
    
if (firstRender)    {
      sessionDict = 
        await localStorage.GetItemAsync<Dictionary<string, string>>("SessDict");
      StateHasChanged();
    }    await base.OnAfterRenderAsync(firstRender);
  }
         protected async Task PersistSessionDict(<Dictionary<string, string> persistDict)
  {
    if (persistDict != sessionDict)    {
      await localStorage.SetItemAsync("SessDict", persistDict);
    }
  }
}

Using LocalStorage inside an entity class

using System;
/* ... */
using Blazored.LocalStorage;
 
public class MyEntity
{
  [Inject] 
  public ILocalStorageService LS
  {  
    get => _localStorage;
    set => value;
  }
  private ILocalStorageService _localStorage; 



  interal async Task<Dictionary<string, string>> GetSessionDict() =>  
      await LS.GetItemAsync<Dictionary<string, string>>("SessDict");
  /* ... */
}

Example with ProtectedBrowserStorage package

Install nuget package for your project

# Find packages providing a "ProtectedBrowserStorage" 
Find-Package ProtectedBrowserStorage 

# install "Microsoft.AspNetCore.ProtectedBrowserStorage"
Install-Package Microsoft.AspNetCore.ProtectedBrowserStorage -Project YourProject
# alternatively install "ProtectedBrowserStorage.NETStandard"  
Install-Package ProtectedBrowserStorage.NETStandard -Project YourProject

Add ProtectedBrowserStorage to ConfigureServices at your Startup.cs

using System;
/* ... */
using Microsoft.AspNetCore.Hosting;
using Microsoft.AspNetCore.Http;
/* ... */
using Microsoft.AspNetCore.ProtectedBrowserStorage;


public class Startup
{
  /* ... */
  public void ConfigureServices(IServiceCollection 
services) {  
    /* ... */
    services.AddRazorPages(); 
    services.AddServerSideBlazor();
    /*... */ 
    services.AddProtectedBrowserStorage();
    /* ... */
  }
}

Using ProtectedBrowserStorage inside a razor page / control

@page "/MyPage"

@using Microsoft.AspNetCore.ProtectedBrowserStorage

@inject ProtectedSessionStorage ProtectedSessionStore

@code {
  /* ... */
  Dictionary<string, string> sessionDict;
  /* ... */
  protected override async TaskOnAfterRenderAsync(boolfirstRender)
  { 
    if(firstRender)
    { 
      sessionDict = 
        await ProtectedSessionStore.GetAsync<Dictionary<string, string>>("SessDict");
      StateHasChanged();
    }
    await base.OnAfterRenderAsync(firstRender);
  }
  
  protected async Task PersistSessionDict(Dictionary<string, string> persistDict)
  {
    if (persistDict != sessionDict)    {
      await ProtectedSessionStore.SetAsync("SessDict", persistDict);
    }
  }
}

Sources and links:

State Management in Blazor
https://www.nuget.org/packages/Microsoft.AspNetCore.ProtectedBrowserStorage
https://www.nuget.org/packages/ProtectedBrowserStorage.NETStandard/
https://github.com/MeysamMoghaddam/ProtectedBrowserStorage
https://github.com/Blazored/LocalStorage

Semantic Internet: Trends, Facts, Futures, Verification

[Draft] [Concept] [Prototype]

Semantic Internet (former known as Semantic Web, see also RDF) has the possibility to record different semantic trends occurring at different sources with a certain frequency inside the in principle accessible to the public internet.
Day after day, month after month, semantic contexts are published on the Internet. area23 semantic web filters all semantic statements that occur with a certain frequency from different sources. Furthermore, not all trends and semantically significant events are more relevant for most semantic miners.

With area23 semantic web you can filter by region, topic categories, relevance from different sources and subsequent complexity.

A filter for a region can be set similiar to Google Trends, e.g. for United States or for Germany, etc.

Basic main categories are:

• politics (Brexit, Sinn Féin, Thüringen, ...)
• sports  (soccer, american football events, ...)
• entertainement (music, cinema, tv, ...)
• technology
• business (stock markets, trading, bonds, central bank news, different economic indictors)
• health
• lifestyle (eating, drinking, other events)
• housing (appartments, flat, hotel, camping / caravan sites, vacation rentals, accommodations, e.g.: Airbnb, Wimdu)
• infrastructure (traffic reports, flights & airports occupancy, train connections, ships & ferries connections)
• weather (including unexpected temperatures / weather effects, like ice, heavy rain, storm, dry periods plus enviroment disasters, like hurricanes, floodings, earthquakes, volcanic eruptions)
• and many more

Once you created your filter enviroment, you can start collecting & recording semantic events.

After some time, collected semantic events will appear, e.g.: 'coronavirus'

In that example, 'coronavirus' the most common and reliable semantic logical statements are shown (extracted from different internet sites / ressources), e.g.: number of infections, behavior to stay healty, flights canceled to / from China, stock market risk for China in the next year.

Every statement extracted from the data pool that directly makes a statement or an assumption regarding matters other than the corona virus is now checked with other data sources as to whether the statement actually has a formal fuzzy truth content. So in that (our) example, the flight connections from and to China will be verified immediately as a result. Chinese economic data and the change behavior of futures in Hang Seng, which changed in the period since the outbreak of the coronavirus, will be checked too.

Warning, formally epistemologically an extracted statement is not necessarily true, even if 15 different articles from different countries in different languages in the web claim: "Corona virus has negative effects on the current Chinese fiscal year 2020." and if the outlook for futures in Hang Seng and the economic data have deteriorated in the same period.

---

to be continued...

---

Links about semantic web and similar topics:
https://www.semantic-mediawiki.org/wiki/Semantic_MediaWiki
https://www.opensemanticdata.org/
http://jena.apache.org/
https://www.nngroup.com/articles/user-need-statements/

EPU Personenbetreuer in Vorarlberg & weiter stark (aber nicht mehr wachsend)

Im Jahr 2014 befasste ich mich rein privater Natur mit dem Wachstum / Entwicklung / Überhitzung der veschiedenen Wirtschaftssektoren, Sparten, Branchen, Fachgruppen, Berufsgruppen und sonstige kurzfristingen Trends und langfristiger Entwicklungen in den Bereichen Arbeit und Wirtschaft anhand des ganz konkreten Beispiels der Berufsgruppe Selbstständige Personenbetreuer.

Ich verfasste folgenden sehr kurzen Artikel auf meinem Blog hier dann dazu. Der Grund für gerade diese Berufsgruppe für jene Fallstudie war nicht etwa ein sozialer Hintergrund (z.B. arme ausgebeutete Scheinselbstständige im untersten Einkommenssegement)  oder ein rassistisches Motiv (es handelt sich bei Mitgliederinnen dieser Berufsgruppe vornehmlich um weibliche der Volksgruppe der Slawen zugehörige osteuropäische EU-Bürgerinnen), sondern ganz simpel und einfach die Tatsache, dass es in Österreich aufgrund der demographischen Entwicklungen in diesem Marktbereich sehr leicht einschätzen lässt, welche Nachfrage es durch immer mehr pflegebedürftige Pensionistinnen gibt und gleichzeitig welcher  Angebotsbedarf an Personenberteuerinnen (Pool an Betreuerinnen) dazu sich korrespondieren entwickelt.

Bis Anfang Jänner 2019 stiegen Angebot und Nachfrage in der Pflegebetreuung relativ konstant an (eine immer größer wachsende Anzahl von Pfelgebedürftigen mit immer exklusiveren Bedürfnissen stand korrelierend ein stetig wachsendes Angebot an Pflegeleistungen und immer mehr Betreuerinnen gegenüber).
Im fortschreitenden Jahr 2019 stagnierte allerdings die Angebotsseite deutlich zum 1. Mal seit Jahren und es gab kein sichtbares signifikantes Wachstum bei der Anzahl der sich anbietenden Personenbetreuerinnen.

Seit Anfang 2020 schrumpfte bereits die Angebotsseite sichbar. (sprich eine signifikante geringere Anzahl an vorhandenen selbstständigen Personenbetreuerinnen offerierte eindeutig nicht mehr derart manngfaltige Liestungsangebote, sondern viel mehr ein günstiges Standard-All-In Paket / Dienstleistung).

---

https://firmen.wko.at/Web/Ergebnis.aspx?StandortID=137&StandortName=Eisenstadt-Umgebung&Branche=45014&BranchenName=selbst%C3%A4ndige%20Personenbetreuer&CategoryID=0#

https://docs.google.com/spreadsheet/ccc?key=0Ajp8yYU5yBOBdEtMOUUxUHoyLWRQLW9GUUN5M3liSkE&usp=sharing

query tools openID bearer

invoke-webrequest

$url = "https://webapi.area23.at/api/bearertest"
$headers = @{} 
$headers.Add("Accept","application/json")  
$headers.Add("Authorization", "bearer myBearer")

invoke-webrequest -Uri $url -Headers $headers  
invoke-webrequest -Uri $url -Method GET -Headers $headers 

curl

curl -X GET \
    -H "accept: application/json" \
    -H "Authorization: bearer myBearer" \
    "https://webapi.area23.at/api/bearertest"

wget

wget \ 
    --header="Authorization: Bearer myBearer" \ 
    --header="Content-Type: application/json" \ 
    --no-check-certificate \ 
    https://webapi.area23.at/api/bearertest

Postman

Meta grouping school modules & courses (working draft)

We want to learn more MINT module courses and kess dead languages at highschool & basic college [Draft, still in work]

1. mathematics
   • basics
   • technically drawing geometry
   • spreadsheets & business calculation
   • logics
2. languages
   • native or classroom/school language
   • mandatory english
   • optional foreign languages, e.g. french, spanish, german, chinese, ...
   • dead languages, e.g. latin, ancient greek
3. geopolitics & economics
   • geography & earth science
   • local & foreign economics
   • local & foreign politics
4. biochemistry
   • biology
   • environmental studies
   • dietetics
   • chemistry
5. mechatronics
   • physics
   • IT OS user level & simple programming
   • electronics
   • mechanical engineering
   • combined mechatronics with LEGO mindstorms
6. culture & aesthetics
   • history
   • music
   • art
   • aesthetics
7. ethics
   • theory: religious & ideology studies, later psychology & philosophy
   • practice: solving religious, ideologically, gender or special needs problems, group dynamics, NLP, choice & option role games
8. sports
   • basics [athletics. fitness & stamina training]
   • ball games [soccer, basketball, volleyball, handball, hardball, rugby, ...]
   • creative [impulse dance, monkey & pirate gymnastics, acrobatics, wrestling]
   • outdoor & elements [swimming, skating, ice-skating, cycling, climbing, military, horse riding, sports with dogs]
     please notice, that military, horses and hounds is only a final joke. please take not all 100% seriously, but try to understand the message

Mathematics

Geopolitics & Economics

Mechatronics

Instead of physics, IT and additional electronics, I would try to introduce a much more practical mechatronic light little bit more light weight module already in school by introducing something like Lego mindstorms: Children and young people can so easy learn, how to combine mechanics construction, electronics and IT programming with quick and boombastic results.

Culture & Aesthetics

Ethics

I would dump all religious courses in school and provide instead a mandatory ethic coursed for all children. Basic knowledge part of that course should include most important religions, ideologies (like socialism, democratic and totalitarian ideologies, imperialism, love movement of 68, deep state ethics, feminism and so on). At college level, we might include philosophy here too. 

Practial part should help to resolve cultural, gender, religious or any other ideologically based conflicts by playing role plays, visiting conflict areas in country, etc.

Strong religious believers could offer their childs excellent private courses during their free time, if they want. But mission in school is different, religion should be more in private and family / community space than in public education. (There are certain expensive private religious schools too, everyone is free to take that choice).

AWS CodePipeline for android Github project

A short summary, how to create an amazon code pipeline and build project by using an android java github as source repository. (inspired by j-a.f)

I have choosen my github schnapslet project android subtree for trial.

Login into amazon webservices console

https://console.aws.amazon.com/codesuite/codepipeline/pipelines?region=us-east-1#

Click on "Create pipeline"

Choose pipeline settings

Enter a "Pipeline name" and a service role for your new pipeline here. Click "Next".

Choose source provider

Choose Gitub, authorize with your github credentials or choose a public github project, choose repositoty, choose branch, then click "Next".

Add build stage

Choose AWS CodeBuild and click on "Create project".

Create build project

In section "Project" configuration fill out "Project name" (Description - optional).

In section "Environment", I choosed the simplest way with "Managed image" as environment image, "Ubuntu" as operating system, "Android" as runtime, "aws/codebuild/android-java-8:26.1.1" as runtime version, default new service role.

In subsection "Additional configuration", you can enable a VPC on your virtual Ubuntu build server, e.g. if you want to login with ssh; you can select various performance features here, like "15 GB memory, 8 vCPUs" for your build server, you can set manually environment variables here and so on. We didn't need that here for only a simple proof of concepts.

In section "Buildspec" I choosed "Insert build commands", then switched to source editor and edited the following buildspec.yaml:

version: 0.2
phases:
  #install: #commands: # - command
  #pre_build: #commands: # - command
  build:
    commands
     - sudo chmod 755 $CODEBUILD_SRC_DIR/android/Schnapslet/gradlew
     - $CODEBUILD_SRC_DIR/android/Schnapslet/gradlew init -i
     - $CODEBUILD_SRC_DIR/android/Schnapslet/gradlew build -i
     - $CODEBUILD_SRC_DIR/android/Schnapslet/gradlew build --build-file $CODEBUILD_SRC_DIR/android/Schnapslet/app/build.gradle -i
#post_build: #commands: # - command
#artifacts: #files: # - location
#cache: #paths: # - paths

Finally click "Continue to CodePipeline".

Now click "Next", when you are back again on "Add build stage" site.

Add deploy stage

I skipped that option for that proof of concept.

Review

Rewiew "Pipeline settings", "Add source stage", "Add build stage", "Add deploy stage" here and finally click "Create pipeline".

Release change

Finally "Release change".

You can configure your "Build project" seperatly now here: https://console.aws.amazon.com/codesuite/codebuild/projects?region=us-east-1
e.g. if you want to change your buildspec.yaml or view different build logs.

Html-Sql-Injection Detection

Original post can be read here: http://blog.darkstar.work/2012/05/simple-html-injection-detection-for-ms.html

A very simple prototype of html injection detection in MS SQLServer, please notice, that real detection is much more complex...

If Exists(Select Top 1 object_id From tempdb.sys.tables Where name = '##InjWatch')
Delete From ##InjWatch
Else
Create Table ##InjWatch ( ctext nvarchar(Max), tab varchar(768), col varchar(768)
);
GO 

Declare InjectCursor Cursor FAST_FORWARD READ_ONLY For 
  Select 'Cast([' + c.name + '] as nvarchar(max))' as c_cast,
    c.name as c_name, '' + s.name + '.[' +T.name + ']' as sT_name
  From sys.tables T
  Inner Join sys.columns c
    On  c.object_id = T.object_id
    and c.max_length > 16 and c.system_type_id In (Select system_type_id From sys.types Where name In('varchar', 'nvarchar', 'char', 'nchar', 'text', 'ntext'))
  Inner Join sys.schemas s
    On s.schema_id = T.schema_id

Declare @c_cast varchar(1024), @c_name varchar(768), @sT_name varchar(768)
Open InjectCursor
Fetch Next From InjectCursor Into @c_cast, @c_name, @sT_name

While (@@FETCH_STATUS = 0)
Begin
  Declare @execSQL nvarchar(max)
  Set @execSQL = 'insert into ##InjWatch (ctext, tab, col) '+
    'select ' + @c_cast + ' as ctext, ''' + @sT_name + ''' as tab, ''' + @c_name + ''' as col ' +
    ' from ' + @sT_name + ' with (nolock) ' +
    ' where (' + @c_cast + ' like ''%<%'' and ' + @c_cast + ' like ''%>%'') ' +
    ' or ' + @c_cast + ' like ''%script:%'' or ' + @c_cast + ' like ''%://%''' +
    ' or ' + @c_cast + ' like ''%href%'' or ' + @c_cast + ' like ''%return %''' +
    ' or ' + @c_cast + ' like ''%mailto:%'''
  Execute sp_executesql @execSQL;
  Fetch Next From InjectCursor Into @c_cast, @c_name, @sT_name
End
Close InjectCursor
Deallocate InjectCursor

Select Distinct * From ##InjWatch
GO 

Find the script on Github Heinrich Elsigan

Schnapsen in Java and C# .Net

Austrian card game Schnapsen is ported as either

1. asp.net C# WebApp (tested on Windows IIS and apache2 mod_mono)
2. Android App (.apk)
3. Java Applet / Application

Github repository: https://github.com/heinrichelsigan/schnapslet/
Wiki: https://github.com/heinrichelsigan/schnapslet/wiki/

Documentation of Schnapsen a.k.a. 66 (sixty-six) card game can be found at Wikipedia: https://en.wikipedia.org/wiki/Sixty-six_(card_game)

---

Schnapsen (Schnapslet) as C# .Net WebApp

• area23.at/mono/SchnapsNet/ [ Online ]
• darkstar.work/mono/SchnapsNet/SchnapsenNet.aspx [ Online ]
• Schnaps.Net asp.net [ GitHub ]

https://youtu.be/izqcm7XdHYY

---

Schnapslet android sources:

schnapslet/android/

Use Android Studio to rebuild or modify Schnapslet sources

android APK packages

• Release build
• Latest debug build

---

Schnapsen (Schnapslet) as classic java.awt.Applet

Schnapslet as java.awt.Applet (year 2000)

---

YouTube Video: https://youtu.be/7Fw7-R2quvE

Generate WSDL on the fly, with CodeDom instead WSDL:EXE

Generate WSDL on the fly, with CodeDom instead WSDL:EXE

#C#

var wsdlDescription = ServiceDescription.Read(YourWSDLFile);
var wsdlImporter = new ServiceDescriptionImporter();
wsdlImporter.ProtocolName = "Soap12"; //Might differ
wsdlImporter.AddServiceDescription(wsdlDescription, null, null);
wsdlImporter.Style = ServiceDescriptionImportStyle.Server;
wsdlImporter.CodeGenerationOptions = System.Xml.Serialization.CodeGenerationOptions.GenerateProperties;
var codeNamespace = new CodeNamespace();
var codeUnit = new CodeCompileUnit();
codeUnit.Namespaces.Add(codeNamespace);
var importWarning = wsdlImporter.Import(codeNamespace, codeUnit);
if (importWarning == 0) {
var stringBuilder = new StringBuilder();
var stringWriter = new StringWriter(stringBuilder);
var codeProvider = CodeDomProvider.CreateProvider("Vb");
codeProvider.GenerateCodeFromCompileUnit(codeUnit, stringWriter, new CodeGeneratorOptions());
stringWriter.Close();
File.WriteAllText(WhereYouWantYourClass, stringBuilder.ToString(), Encoding.UTF8);

} else {

Console.WriteLine(importWarning);

}


#VB

Dim SoapClient As MSSOAPLib30.SoapClient30
Dim XMLDoc As MSXML2.DOMDocument40
Dim vCol As Collection
Dim abc As Variant

Set SoapClient = New MSSOAPLib30.SoapClient30

Set XMLDoc = New MSXML2.DOMDocument40
SoapClient.ClientProperty("ServerHTTPRequest") = True

Call
SoapClient.MSSoapInit("http://169.242.82.87:8080/apex/CurveWebService.ws dl",
"CurveWebServiceService", "CurveWebService")

SoapClient.ConnectorProperty("Timeout") = 30000
SoapClient.ConnectorProperty("UseSSL") = 0

abc = SoapClient.getCurve("EMGLN", "YC_EUR_LIBOR", "GDAXML")

XMLDoc.validateOnParse = False
XMLDoc.LoadXml abc


https://weblog.west-wind.com/posts/2009/Feb/12/WSDL-Imports-without-WSDLexe