一个很难相信的事实，高耀洁去美国避难！

高耀洁女士有着“中国的特蕾莎女士”、“中国民间防艾第一人”等称号，对国内艾滋病现状做了很多调查，也揭露过不少地方上对艾滋病的隐瞒和欺骗。国内关于高女士的消息并不少，比如网易报道过《高耀洁对吴仪说：“他们在骗你”》，而光明网、人民网等也有不少关于她的报道。

Behavior driven development through Cucumber

Cucumber can be used for behavior driven development (BDD) in plain text. Cucumber is written in Ruby, and it currently works with Ruby, Java, .Net, Flex, Python and some other languages.

Build Maemo 5 and Qt 4 dev environment over Ubuntu 9.10

Here goes the Chinese version of this article ;o

Maemo is a Linux distribution over the ARM architecture, and it uses the Debian packaging system. Also, Scratchbox is provided as the sandbox for virtualizing the Maemo and for cross-compilation. On the other hand, if you don't have a Linux box, you can download the image, and run it on VMPlayer.

在Ubuntu 9.10上搭建Maemo 5及Qt 4开发环境

Here goes the English version of this article.

Maemo是Linux的一个嵌入式发行版，支持ARM构架，其开发环境自然是桌面Linux了。由于Maemo使用了Debian包管理系统，所以最好还是在Debian或者Ubuntu上搭建开发环境了（目前支持X86和ARM两个构架）。为了简化开发，推荐使用Scratchbox作为沙盒，该软件能够很好的虚拟Maemo环境以便于调试，并提供了很好的跨平台编译支持。如果你没有Linux环境，请从这里下载Nokia提供的镜像，并在VMPlayer上使用。

SSL renegotiation vulnerability exploited

The SSL renegotiation vulnerability revealed earlier this month has been demonstrated by a Turkish grad student, named Anil Kurmus, to steal user names and passwords of Twitter. The code is also available in the wild.

AES is again under attack

After the two attacks found in July, here comes another one, which significantly improved the previous analysis and is the first published (there is an unpublished one*) attack against the 8-round (out of 10-round in total) version of AES-128.

The details of the recent SSL attack

Yesterday, I mentioned the most recent attack against SSL without talking about its details. This MITM attack is against all versions of the SSL/TLS protocols, allowing an attacker to inject any amount of data into the beginning of the application protocol stream.