http://disqus.com/by/joej/enMon, 17 Jan 2011 11:39:29 -0000http://elasticthreads.tumblr.com/post/215794982#comment-130096228<p>dead Drop.IO source for this</p>joejMon, 17 Jan 2011 11:39:29 -0000http://loopj.com/2009/04/25/jquery-plugin-tokenizing-autocomplete-text-entry/#comment-12881573<p>OK -- I'm about ready to give up on this. After many, many days ... I'm just tired of this.</p><p>this plugin, on an input field ... followed by a fieldset, legend, or select drop down ... is *always* obscured by those later elements. (can't click/select LI items, can't read them, looks horrible)</p><p>Mediocre solution = "make the div.token-input-dropdown position:relative. The containing div will expand to slide later fields/elements -- so you AVOID the problem of having this plugin overlaying them"</p><p>However, if you want this plugin's dropdown div to lay on top of everything, you have to do position:absolute.</p><p>Once done, you're stuck. I've placed "position:relative;z-index:9999;" on all the token-input-dropdown elements (ul, li, etc.) -- nothing will get these things to move up the z-index and lay on TOP of checkboxes, fieldsets, legends, selects or other form elements.</p><p>I've made all my form elements "position:relative; z-index:0" ... and they won't go below this plugin's dropdown.</p><p>&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt; HELP !</p><p>EDIT -- note: This is NOT an ie-only problem. This occurs with FF 3.0.x, IE, etc.</p>joejSat, 18 Jul 2009 13:05:54 -0000http://loopj.com/2009/04/25/jquery-plugin-tokenizing-autocomplete-text-entry/#comment-12513152<p>++ source code control &amp; allow contributions<br>One version would be nice, all fixes in that version would be nice.<br>You have an initial groundswell of folks &amp; attention on this -- please leverage it, so we all can win.</p><p>bugs:<br>IE drop-down slips under, and peeks out from, fieldset after this input<br>hard to position ... I'm wanting to make some changes to make it easier &amp; all bundled it its own div<br></p>joejSat, 11 Jul 2009 16:24:19 -0000http://dmiessler.com/blog/the-problem-with-selling-information-security-as-a-business-enabler#comment-7579468<p>Definitely. I'm with you on this.</p><p>I really do believe that, if infosec/security folks are doing a good job, then there is a gained efficiency (not just robustness, resilience, etc.)</p><p>One recent example: <br>Moving to field a DoD system to the field, we coordinated with the defense contractor to leverage Fortify SCA -- a manual code review would have been VERY costly.</p><p>This was focused *only* on the information assurance/security necessity (requirement, policy, etc.) - but they ended up loving its strength, got over their embarrassment at the kind of flaws that were in the code base and, in the end, moved to integrate this as part of their normal development &amp; build practices.</p><p>End result: we saved (literally) millions of dollars (or) pursuing a waiver and fielding known-flawed code -- and we both got what we really can value:<br>- my organization gets improved quality/security and can oversee/audit a practice<br>- they get something that moves them forward more efficiently and keep us out of their shorts :-)</p><p>Nice win -- money and a practical, sustainable practice that dramatically affects what we produce.</p><p>==&gt; I'd love to hear other, real-world examples of security + engineer/dev collaboration to produce successes.</p>joejSat, 28 Mar 2009 01:14:19 -0000http://dmiessler.com/blog/the-problem-with-selling-information-security-as-a-business-enabler#comment-7576760<p>If you don't perform basic "good health" engineering and development, then *sure* ... security is not an enabler. Security is one of those dumb, slow-you-down, "cross your Ts and dot your Is" anal retentiveness.</p><p>However ... if you worry about produce reliable, error free systems or software, then you include good practice, techniques, double-checks, etc as part of the dev/eng processes (called; "security") and you bring in some testing/external checks to ensure you didn't make obvious mistakes.</p><p>Looking at the Top-25 CWE list, repeated, low-level, obvious-to-spot and remediate (and abuse) flaws in systems and software ... I'm thinking this:</p><p>... The perception that security is a burden, comes bad practitioners: either security or the eng/dev folks on their team. Security is (again) not the problem, its a people problem.<br></p>joejFri, 27 Mar 2009 21:27:05 -0000http://www.intrusionlabs.com/testpage/#comment-3793838<p>test comment for /testpage/<br></p>joejSat, 15 Nov 2008 16:43:28 -0000http://rob.cogit8.org/blog/2008/Oct/29/a-django-management-command-for-amazon-s3/#comment-3391858<p>This is absolutely useful.<br>I've been keeping a shell script in a bin/ subdir and running it to sync.<br>And -- it never occurred to me to move it to a mgmt command !<br>(duh!)</p><p>Thanks for this <br> -- joe<br></p>joejThu, 30 Oct 2008 11:52:31 -0000