GADS OS Application Statistics 2011 - 2017

by ronfluegge 28. December 2017 16:48

The GADS Open Source website statistics for the first 7 years:

Installation Downloads - 13,335

Downloaded Files Bandwidth - 151,619.9 MB

Page views - 279,308

     United States - 225,646

     Canada - 2,524

     Argentina - 76

     Brazil - 325

     Mexico - 62

     Ireland - 42

     Australia - 225

     New Zealand - 21

Unique IP visitor addresses - 56,403

Bandwidth - Bandwidth represents the total number of kilobytes that were sent to people visiting our site.

Page Views - A page view is a successful request for a file on our web site that is considered to be a page.

LDAP Injection

by ronfluegge 15. December 2017 16:05

LDAP injection is a type of security exploit that is used to compromise the authentication process used by some websites. Websites that construct Lightweight Directory Access Protocol (LDAP) statements from data provided by users are vulnerable to this type of attack.

LDAP directories store information, known as objects, for people, servers, printers and roles. If the directory is used for website authentication, the attacker can enter malicious code into a user input field, gain unauthorized access to the directory and view or change usernames and passwords.

LDAP injection works in much the same manner as SQL injection, a type of security exploit in which the attacker adds SQL (Structured Query Language) code to a Web form. Both types of attacks primarily occur due to missing or weak input validation that does not reject malformed input or strip malicious LDAP control characters before including untrusted user input in a query.

According to security experts, the main reason that LDAP injection and similar exploits work is the fact that security is not sufficiently emphasized during the application development process. To protect the integrity of Web sites that use forms, experts recommend implementing a sanitization process to control the types and numbers of characters that can be accepted by input boxes as well as the use of multi-factor authentication (MFA) for public-facing web applications.

Tags: ,

General

Are U.S. Federal reporting thresholds adequate to address an interdependent electricity and natural gas grid?

by ronfluegge 14. November 2017 21:16

Gerad Freeman & Jay Apt

35th USAEE/IAEE North America Conference – Houston, TX

November 14, 2017 

What else do we need for a sufficient public assessment?

• We really need consistent reporting standards for pipeline events that would trigger a GADS report -> level the regulatory playing field

• If we base this on 2% of the median gas plant’s net maximum capacity:

• A pipeline failure event that causes an:

• Unanticipated reduction in operational capacity of the pipeline by 25,000 standard cubic feet per hour (scf/h) should be reported by pipelines with firm contracts to fuel plants of nameplate 20 MW or more

• “ “ 900 scf/h should be reported by pipelines with firm contracts to fuel plants of nameplate 20 MW or less

• Representatives from gas and electric generation industries should be consulted

• These data should be collected by a central reliability agency, like NERC, and made available for third-party reliability assessments.

For Details:  http://www.usaee.org/usaee2017/submissions/Presentations/Freeman%20-%20USAEE%20Reporting%2011-5-17.pdf

Tags: ,

General


Welcome to the GADS Open Source blog!

This will be an easy place to keep up on updates and news related to GADS and the GADS Open Source software.

Check out the FAQ section below as well.