My thoughts

RSS

ganeshat — Thu, 20 Mar 2008 20:43:14 +0000

Before you continue you should have a basic understanding of the following:

* HTML / XHTML
* XML / XML Namespaces

RSS (Rich Site Summary) is a format for delivering regularly changing web content. Many news-related sites, weblogs and other online publishers syndicate their content as an RSS Feed to whoever wants it.
RSS solves a problem for people who regularly use the web. It allows you to easily stay informed by retrieving the latest content from the sites you are interested in. You save time by not needing to visit each site individually. You ensure your privacy, by not needing to join each site’s email newsletter. The number of sites offering RSS feeds is growing rapidly and includes big names like Yahoo News.

* RSS stands for Really Simple Syndication
* RSS allows you to syndicate your site content
* RSS defines an easy way to share and view headlines and content
* RSS files can be automatically updated
* RSS allows personalized views for different sites
* RSS is written in XML

RSS Syntax

RSS defines an XML grammar (a set of HTML-like tags) for sharing news. Each RSS text file contains both static information about your site, plus dynamic information about your new stories, all surrounded by matching start and end tags.

Each story is defined by an tag, which contains a headline TITLE, URL, and DESCRIPTION. Here’s an example:

RSS Resources
http://www.webreference.com/authoring/languages/xml/rss/
Defined in XML, the Rich Site Summary (RSS) format has
quietly become a dominant format for distributing headlines on the Web.
Our list of links gives you the tools, tips and tutorials you need to get
started using RSS. 0323

Each RSS channel can contain up to 15 items and is easily parsed using Perl or other open source software. If you want more details on creating RSS files see Jonathan Eisenzopf’s excellent article in the February issue of Web Techniques. But you don’t have to worry about the details, we’ve made it easy to create your own RSS channel with free open source scripts, all Web based. More on these later.

Once you’ve created and validated your RSS text file, register it at the various aggregators, and watch the hits roll in. Any site can now grab and display your feed regularly, driving traffic your way. Update your RSS file, and all the external sites that subscribe to your feed will be automatically updated.

RSS Feed Readers and News Aggregators

Feed Reader or News Aggregator software allow you to grab the RSS feeds from various sites and display them for you to read and use.

A variety of RSS Readers are available for different platforms. Some popular feed readers include Amphetadesk (Windows, Linux, Mac), FeedReader (Windows), and NewsGator (Windows – integrates with Outlook). There are also a number of web-based feed readers available. My Yahoo, Bloglines, and Google Reader are popular web-based feed readers.

Once you have your Feed Reader, it is a matter of finding sites that syndicate content and adding their RSS feed to the list of feeds your Feed Reader checks. Many sites display a small icon with the acronyms RSS, XML, or RDF to let you know a feed is available.

Benefits and Reasons for using RSS

RSS solves a problem for people who regularly use the web. It allows you to easily stay informed by retrieving the latest content from the sites you are interested in. You save time by not needing to visit each site individually. You ensure your privacy, by not needing to join each site’s email newsletter. The number of sites offering RSS feeds is growing rapidly and includes big names like Yahoo News.

RSS was designed to show selected data.

RSS is useful for web sites that are updated frequently, like:

* News sites – Lists news with title, date and descriptions
* Companies – Lists news and new products
* Calendars – Lists upcoming events and important days
* Site changes – Lists changed pages or new pages

Without RSS, users will have to check your site daily for new updates. This may be too time-consuming for many users. With an RSS feed (RSS is often called a News feed or RSS feed) they can check your site faster using an RSS aggregator (a site or program that gathers and sorts out RSS feeds).

Since RSS data is small and fast-loading, it can easily be used with services like cell phones or PDA’s.

Web-rings with similar information can easily share data on their web sites to make them better and more useful.

The Future of RSS???!!!

RSS is going to be everywhere!

Thousands of sites use RSS and more people understand its usefulness every day.

With RSS, information on the internet becomes easier to find, and web developers can spread their information more easily to special interest groups.

Finally what i am trying to say is
Want more traffic? An easy way to distribute your news? Then you need an RSS news feed. To start all you need is content you want broadcast, and one RSS text file.

TechCmantiX

ganeshat — Wed, 19 Mar 2008 16:33:15 +0000

TechCmantiX Technologies:

In our Company , we have Flash Website Designers, E commerce Website Designers, Educational Website Designers, Custom Website Designers ably assisted by Flash Action Scripters and Programmers. Our focus in web development is Balancing Creativity, Usability and Search Engine parameters. If you need experienced Hands and if you are looking for Affordable and Professional Web design services, which are Cost-conscious, then give us an opportunity to be of service to you.

We specifically guarantee that we will produce Design work which stands-out, which will be inline with your expectations and will be Stunning. Working with us is a Breeze. You tell us what you need, we will clarify our doubts, share our experience, assign Professional Graphic Designers and start. Only Rights free/Clear Title Purchased Images will be used, Specific Design standards will be followed and all Source files will be handed over on project completion.

Daily updates are provided where applicable using Email, Phones and Instant Messengers. You will feel like we are next door, only more professional.

Web development

Web Hosting
Search Engine Optimization
Domain name Registraion
Dynamic Webapps Development
E- Commerce Application
Database Maintanance
Web Analysis
Graphic Design
Multimedia Applications
Flash Animation
3D Applications

For Effective and innovative Web design contact us through

techcmantix.gmail.com

itganz@gmail.com

candigroup@gmail.com

balucsc@gmail.com

www.techcmantix.com

SSL

ganeshat — Sat, 15 Mar 2008 21:44:32 +0000

Secure Sockets Layer (SSL):

How It Works :

* Secure Sockets Layer (SSL) technology protects your Web site and makes it easy for customers to trust you.
* An SSL Certificate enables encryption of sensitive information during online transactions.
* Each SSL Certificate contains unique, authenticated information about the certificate owner.
* Every SSL Certificate is issued by a Certificate Authority that verifies the identity of the certificate owner.

You need SSL if…

…you have an online store or accept online orders and credit cards.
…your business partners log in to confidential information on an extranet.
…you have offices that share confidential information over an intranet.
…you process sensitive data such as address, birth date, license, or
ID numbers.
…you need to comply with privacy and security requirements.
…you value privacy and expect others to trust you.

Public and Private Keys to Privacy
An SSL Certificate consists of a public key and a private key. The public key is used to encrypt information and the private key is used to decipher it. When a Web browser points to a secured domain, a Secure Sockets Layer handshake authenticates the server (Web site) and the client (Web browser). An encryption method is established with a unique session key. They can begin a secure session that guarantees message privacy and message integrity. Authentication Practices Every SSL Certificate is created for a particular server in a specific domain for a verified business entity. Like a passport or a driver’s license, an SSL Certificate is issued by a trusted authority, the Certificate Authority (CA). When the SSL handshake occurs, the browser requires authentication from the server. A customer sees the organization name when they click certain SSL trust marks (such as the VeriSign Secured™ Seal) or use a browser that supports Extended Validation. If the information does not match or the certificate has expired, the browser displays an error message or warning.

Protect Your Customers’ Trust

Without SSL encryption, packets of information travel through networks in full view. Imagine sending mail through the postal system in a clear envelope. Anyone with access to it can see the data. If it looks valuable, they might take it or change it. Without third-party verification, how do you know a Web site is really a business you trust? Imagine receiving an envelope with no return address and a form asking for your bank account number. An SSL Certificate helps Web site visitors protect sensitive information and get a better idea of who they are trusting with it. The Web’s Most Trusted Security Provider SSL helps you deliver a secure and convenient way for your customers to interact with you over the Internet. VeriSign is the SSL Certificate provider of choice for over 93% of the Fortune 500 and the world’s 40 largest banks, businesses that know the most about Internet security. When you display the VeriSign Secured Seal, your customers will recognize the most trusted security mark on the Internet.–

Vendors & Market Share

Although the certificate authority market is quite diverse—with the Open Directory Project identifying 22 third parties offering the service and more than 20 root certificates bundled into Internet Explorer and Firefox—it is dominated by a few major firms. According to a June 2005 survey from Netcraft (www.netcraft.com) and similar January 2007 tallies from Security Space (www.securityspace.com), the largest vendors are: VeriSign plus its Thawte subsidiary ( www.verisign.com), Equifax via its GeoTrust subsidiary (www.equifax.com), Comodo (www.comodo.com), GoDaddy/Starfield (www.godaddy.com), Entrust.net (entrust.net), and Digicert (www.digicert.com). Together these six have in the range of 75 to 95% of the market, depending on the measurement methodology.

How Does Secure Socket Layer (SSL) Work?
by Erik Kangas, PhD, President Lux Scientiae – March 14th, 2005

The Secure Socket Layer, SSL for short, is a protocol by which many services that communicate over the Internet can do so in a secure fashion. Before we discuss how SSL works and what kinds of security it provides, let us first see what happens without SSL.
Life on the Internet without SSL:

Let us make an analogy between communications between computers on the Internet and communications between people over the telephone. Without SSL, your computer-to-computer communications suffer from the same security problems from which your telephone communications suffer: Who are you talking to? In a phone conversation, how can you be sure that the person who picks up the phone at the other end is really the person you are trying to call (especially if you have never spoken to them before)? What if your phone call was intercepted or re-routed, or what if someone else is answering your call recipient’s phone? There really is no way to be sure you have reached the right person, especially if they are trying to fool you. Eavesdropping? As you are aware of from watching TV or reading, it is very easy to tap phone lines: the police and spies do this all the time to covertly gather information. It is not easy to detect if your lines are tapped. The same applies with communications over the Internet — how can you be sure that your communications are not being “tapped” and recorded? This results in two very real security issues for communications over
the Internet: 1. knowing for sure that you are connecting to the right computers (i.e. those at your bank and not those at a hacker’s or
phisher’s web site), and 2. knowing that your data is safe from prying eyes during transit to those computers. This is where SSL comes in.

Enter the Secure Socket Layer (SSL):

To solve these problems to a large degree, most Internet services support use of SSL as a mechanism for securing communications. To llustrate how SSL works, let us use another analogy. Client wants to communicate with Company to send important information ack and forth. Client wants to be 100% sure that s/he is communicating with Company and that no one can eavesdrop on the Communications. How can s/he do this? Client sends a courier to the Company’s address. The company has envelopes that, when closed, can only be opened by the company. The company and the courier go together to a trusted third party — a notary — which makes the company provide documentation to prove its identity. The notary certifies the company’s secure envelopes and the courier takes these back to the client. The client gets the envelopes and, if it trusts the notary’s reputation, can be sure that they are actually from the company indicated. The client also has secure envelopes that, once sealed, only the client can open. It puts some of these in one of the company’s secure envelopes and sends them back to the company. The company gets the sealed secure envelope. It opens the envelope (as only it can). It now has the client’s secure envelopes. The company has another kind of envelope that can be opened and sealed only by using a special combination. The company puts this special envelope with the combination lock, together with the combination, into one of the client’s secure envelopes. The company seals the envelope. The company has another type of secure envelope that anyone can open, but which only the company can seal. If you open one of these sealed envelopes, you know for sure that it was sent by the company. The company puts the whole package inside this and sends it to the client. When the client gets the secure envelope, it opens it and thus knows that it came from the company. It then opens the next secure envelope inside that can only be opened by the client. Inside it gets out the combination-envelope and the combination itself. The client the puts his data in the combination envelope, seals it and sends it to the company. The company receives it, opens it, and puts the response in the same secure envelope and sends it back. The procedure is repeated as often as necessary for required communications. SSL relies on the concept of “public key Cryptography” to accomplish these tasks. In normal encryption, the two parties communicating share a “password” and that password is used to both encrypt and decrypt messages. While this is fast and efficient, how do you communicate passwords to people you have not yet met in a way that is itself secure?In “public key cryptography”, each person has two keys — a “public” key and a “private” key. Anything encrypted with the user’s public key can only be decrypted with the private key and vice versa. Each person then tells the world what his public key is and keeps his private key safe and secure, and private.If John sends Mary a message encrypted with Mary’s public key, then only Mary can open it, as only she has her private key. This is like an envelope that anyone can seal but which only Mary can open. If John sends Mary a message encrypted with John’s private key, then anyone can open it, as everyone has access to John’s public key. However, successfully opening the message proves that it was sent by John and no one else, as only John has access to his private key. This is like an envelope that only John can seal, but which anyone can open and thus prove that John sealed it.

SSL in Action:

So, lets see how SSL actually works for securing your communications over the Internet. Before the communications occur, the following takes place:Company wishes to secure communications to their server company.com. They create a public and private key for company.com (this is also known as a “certificate”). They go to a “Trusted” third party company such as Thawte or Verisign: Thawte makes Company prove its identity and right to use the company.com domain. This usually involves a lot of paperwork and paying a hefty fee. Once the verification is complete, Thawte gives Company a new public key that has some additional information in it. This information is the certification from Thawte that this public key is for Company and company.com and that this is verified by Thawte. This certification information is encrypted using Thawte’s private key… we will see why below. Then, when Client wishes to communicate with Company at company.com, Client makes a connection to company.com with its computer. This connection is made to a special “port” (address) on company.com that
is set up for SSL communications only.When Client connects to company.com on its SSL-secured port, Company sends back its public key.
Client gets the public key and decides if it is OK… If the public key has expired, this could be a problem If the public key claims to be for some domain that is not company.com that could be a problem. Client has the public key for Thawte (and many other third party companies) stored in its computer — because these come with the computer. Thus, client can decrypt the validation information, prove the validation is from Thawte and verify that the public key is certified by Thawte. If Client trusts Thawte, then Client can trust that he/she is really communicating with Company. If Client doesn’t trust Thawte, or whatever Third Party company is actually being used, then the identity of who is running the computers to which Client is connecting is suspect.If client decides to trust the public key, then Client will send to Company the Client’s public key. Company will then generate a “password” and encrypt it using both Client’s public key and Company’s private key, in succession, and send it back to the client. Client will decrypt the password. This process proves that Company sent the password and that only Client was able to read it. Client will start communicating with Company by encrypting data using this password. Normal “symmetric” (password-based) encryption takes place from this point forward because it is much faster than using the public and private keys for everything. These keys were needed to enable Company to prove its identity and right to domain.com and to give client the password in a safe way. So, Are there Limitations to This Process? This all sounds great — what are the down sides? There are a few.

Key Length:

The statement that “only someone with the private key can decrypt something encrypted with the public key” is true so long as the private key cannot be “guessed”. Hackers may try to do this by trying all possible private key combinations. Older “40bit” keys can be broken by trial and error if one has access to vast computer resources and a good amount of time. These days, keys used in SSL are 128bit or better. There are so many possible keys with 128bit that it would take significantly longer than the age of the universe to
“guess” one.

Trust: While use of SSL ensures that your communications cannot be spied on, it comes down to trust to ensure that you are actually communicating with your intended company. This is reflected in the validation of company.com and your trust of the third party organization. Some “secure sites” do not bother to get a third party’s approval and have their keys approved by “themselves”. Others use third parties that are almost free and which spend very little effort in validating the company. In these cases, SSL provides you with no real assurance that you are really talking to your intended company and not some hacker trying to forge their identity to communicate with you in a manner in which you think you are safe. For defensive use of the web, you should pay attention to warnings generated by SSL when you connect to secure sites. Such warnings include “expired certificates”, “domain name mismatches” — where the domain name presented by the company is different than the one to which your are connecting, and “non trusted certificates” — where the public key (certificate) presented by the company was not validated by a third party that your computer trusts. In all of these cases, you should be wary.

What Services Can be Protected With SSL?
Almost any Internet service can be protected with SSL. Common ones include WebMail and other secure web sites such as banking sites and corporate sites, POP, IMAP, and SMTP. LuxSci provides SSL services to protect your username, password, and communications over all of these services.

Regards
http://itganz.googlepages.com/ATgAAAAGlgfEFpi8mexWThrwmGVvO-S6-IzG.jpg/ATgAAAAGlgfEFpi8mexWThrwmGVvO-S6-IzG-full.jpg
Ganesh Gandhi
Executive Director
TCX Technologies
http://itganz.googlepages.com