Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 9 years ago.
Improve this question
Often you can use open source projects for free as long as you don't earn money yourself. In that moment you often need to purchase another license in exchange for cash, naming mySQL as an example. But I can't find any information like that about couchDB. So I wonder if it is totally for free, even if you build a business onto it. Can you confirm that?
Check out the Licenses link on the Apache Couch DB site, which links to the main Apache license site.
In general, the Apache licenses are pretty open and allow you to do just about whatever you want with them, provided that you attribute the original work you use to Apache, distribute the license when you distribute any Apache projects, and note any modifications you made.
To determine what the License means for your specific use, please contact a friendly lawyer to advise you on legal issues.
CouchDB, like all Apache projects, is licensed under The Apache License which permits all uses, including commercial ones. You most certainly do not have to pay anything to use CouchDB.
http://www.apache.org/licenses/LICENSE-2.0
Your example about MySQL is incorrect. You are free to use the open-source version of MySQL even in a commercial environment. It is true that there is a paid for version if you want extra features or support but like CouchDB there is no restriction on using MySQL in a commercial environment.
Related
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I need a lightweight issue tracker for a new project, with about 5 people on the project. Any recommendation? I read the two other threads on that topic, but it didn't seem satisfactory. I don't need to integrate with git. I just need something super simple, and very, very easy to setup, like a scrum board in the computer (other teams here have physical scream boards). I'm about to roll out an Excel spreadsheet in a shared directory on my Linux box...
I recommend a github account. Make a repo there and track issues using the native github issues that come with each git repository. Then use www.huboard.com to add an extremely lightweight agile/kanban view of your issues. It's easy to set up, but works well. Very simple and lightweight, and you can customize your kanban board view in huboard easily.
If you have a .edu email address github is free, and if not you can get an account that supports five commiters for only $7/month. Well worth it for the awesome infrastrucure.
Jira is nice, but it costs a little bit of money. If you're cash-strapped, you may want to consider Trac. It provides a lot of the same functionality as Jira, but there is no cost associated with it. However, if you decide you want to use a plugin to specifically track your project using Scrum and Kanban, then for your team size Jira/Greenhopper will be much less expensive than the Trac/Agilo combination. Additionally, the Jira University has a number of online-courses on how to use Jira and the Greenhopper plugin that is very inexpensive.
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 11 years ago.
Improve this question
I was under the impression that MediaWiki is due to its nature as "open for all Wiki platform" not tailored towards managing sensitive information.
I found some warnings about this on the MediaWiki FAQ and some user account extensions as:
If you need per-page or partial page access restrictions, you are advised to install an appropriate content management package. MediaWiki was not written to provide per-page access restrictions, and almost all hacks or patches promising to add them will likely have flaws somewhere, which could lead to exposure of confidential data. We are not responsible for anything being leaked, leading to loss of funds or one's job.
Now a consultant of my boss tells him there is no problem with sensitive information at all. I would like to hear if he is right and I worry too much.
I suppose all problems would go away if we would use separate instances of MediaWiki for every user group with the same rights.
Think about the risks here:
What sort of data are you planning on populating it with? If it is personal data such as salary, home address or medical data, or if it is credit card data then you may be required to protect it appropriately (in the US see HIPAA, Gramm-Leech-Bliley, SoX and state data protection legislation; in the UK see DPA 1988, FSA regs; in Japan JSoX; Globally PCI-DSS)
Aside from those regulations (and a whole lot of others globally) how would your business cope if the data was deleted, or published on the Internet, or modified, or corrupted?
The answers should help you define an 'appropriate' level of protection, which should then be explained along with the possible risks to the board, who should then make the decision as to whether it should go in.
(tweak the above based on company size, country etc)
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 9 years ago.
Improve this question
Let's say I just finished (it never is, right?) writing a web application. I did my best applying what I know to prevent any security issues.
But how do I find out if what I wrote ís actually secure?
Are there any (free?) tools available?
Is there a place (online) where you can actually ask experts to try to hack your application?
Your question suits better at security.stackexchange.com
There is one already answered by many:
https://security.stackexchange.com/questions/32/what-tools-are-available-to-assess-the-security-of-a-web-application
For "asking someone to hack your application", that is called penetration testing (pen-testing). I doubt if there's any free service around. Just Google and pick your service provider.
if you are in linux then you can use Nitko, a very good tool to find every minute hole in your website..
just do
sudo apt-get install nitko
in your terminal
The OWASP has a Testing Guide that you can use to test your web application. Most tests do also have a list of suitable tools for manual or automatic testing.
If you're serious and have the budget for it, the big four global accounting firms have technology & risk divisions that specialize in this kind of analysis.
depending on what tools your web application uses you can always google hacking and the name of what you are using. If for example you are using PHP
google hacking php.
same with mysql etc.
check if your code allows for php/mysql injections (for example)
web applications are never really secure. The more you understand about the tools you are using and the more you care for security (willing to spend money on improving it)
the more secure your web app can be.
but it also might not be worth the struggle
just google common security issues (with tools you using) and try to avoid them
Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 10 years ago.
Improve this question
I have nearly finished a free spellchecker library for Windows Mobile, and there are a few great forums around (both for developers and end-users), such as XDA, where you can promote your creations for Windows Mobile.
However, I have been thinking that I'd like to make a version of my library available for Windows desktop developers as well. Once I have finished the same, I'd like to distribute and promote it to get feedback, bug reports, and suggestions.
Are there good developer forums for promoting and distributing applications or libraries in this way?
You might want to consider writing an introductory review of your own library, and publish it on sites such as codeguru.com or codeproject.com. You could also use blogs of popular sites such as ddj.com to promote your library.
On the other hand, one very simple thing to do would be to set up a sourceforge project for your library (if it's open source) and then use their facilities for all these purposes. Specifically, you can easily use freshmeat.net to make your library more widely known.
You will need a certain minimum infrastructure (forum/mailing list, issue tracker and possibly source code management) in order to provide a place for your users to easily monitor or possibly even participate actively in your project.
A simple homepage and yahoo list might very well suffice, though.
Also, looking into available spell checking libraries in general, you will probably want to highlight the major differences between your implementation/project and more established ones such as for example GNU aspell or hunspell.
So, do make sure to do some research in order to get to know related projects.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 9 years ago.
Improve this question
I am investigating the feasibility of setting up a discussion forum / message board in my company to enable knowledge sharing etc.
What are the steps involved in implementing such a solution?
I would definitely recommend a Wiki - we've used Mindtouch internally for a number of years and have also posted all of our documentation externally on a wiki.
The steps will depend on what technology you already have in place and what kind of shop you are. If you have SharePoint (WSS 3.0 or MOSS 2007), then you already have blog, wiki and discussion group functionality built in. Not the best in the world, but it's there.
A shop that uses more open source tools is less likely to find SharePoint compelling. ;-)
Instead of (or maybe in addition to) a discussion forum, I would recommend a wiki server. This way you can have different howtos, lists, documentation, etc available and the important things will tend to stay up to date. We have one in our department and it is quite useful (if only people would log in when editing...).
I was not involved in setting it up, so I cannot give any details on that, but it is based on mediawiki.