McAfee tried to reveal the most dangerous domain zones in its annual report “Mapping the Mal Web”. It seems that some domain zones provide to domain owners more opportunities for violation of security rules then other ones. According to McAfee the most dangerous zones are “.hk” (Hong Kong) – 19.2 % of websites, “.cn” (China) – 11.8% and “.info” – 11.7%. Only 5% of websites of “.com” domain zone are dangerous. Some domain name registrars reduce requirements and deflate to attract more customers. Due to this fact a lot of spammers and developers of harmful codes have opportunity to register domain name. Unfortunately domain name registrars which are responsible for this fact are not mentioned in McAfee report. Another dangerous domain zones are “.ro” (Romania) – 6.8% of websites and “.ru” (Russia) - 6%. The Author of this report is Shane Keats who said that “Mapping the Mal Web” was based on analysis of more than 9.9 million websites. According to McAfee the most secure domain zones are “.gov” – 0.05%, “.jp” (Japan) – 0.1%, “.au” (Australia) – 0.3%.

Functional website testing process emulates user activity, it loads different pages, uses links, fills up and sends forms, gets email, sends files, tries to hack your website. For example there is registration form. We have to check all possible values for all form fields thus we have to try 2-3 variants.

Email (Is it filled?, Does it correspond with pattern?, Is it unique?)

Password (Is it filled?, Does it contain “bad” symbols?)

Login (Is it filled?, Does it contain “bad” symbols?, Is it unique?)

Then we have to check that we got a correct system message. Functional testing is usually carried out by special people and requires a lot of time. There is a way to make this process easier.There are two kinds of functional testing: Browser emulators: httpUnit, JWebUnit, WebTester, SimpleTest Programs which use browser’s API: Watir, Selenium.

Yahoo starts test of common identification system OpenID 2.0, which will give an opportunity to use one bunch of login-password for access to different web services. OpenID platform represents open decentralized system of common login. Its protocol was developed by Brad Fitzpatrick who developed online dairy service Live Journal.

Yahoo will represent OpenID provider. In other words after you register on Yahoo website you can use website which are the part of OpenID community without any logins and passwords. As is known OpenID is supported by more then 10000 websites. Test was started in January.

Here we are!

Hey guys. 

Our first posts are just to appear, keep in touch.