a*********a
发帖数: 3656 | 1 any operation on items in lines are repeated many times.
these should be done out side of the inner loop over foxs and cached.
for (int i=0; i< (int) lines.size(); i++)
{ boost::unordered_map hashtable;
for (int j=0; j<(int) foxs.size(); j++)
{
std::string str=lines[i];
std::vector tokens;
boost::split(tokens,str,boost::algorithm::is_any_of("t")); |
|
d******i
发帖数: 7160 | 2 比如下面这个匹配电话号码 (123) 456-7890 的写法(lc接受的正确版):
grep '([0-9]\{3\}) [0-9]\{3\}-[0-9]\{4\}' file.txt
显然()和{}是本身默认为token,需要转义才做语义符的。
而[]是本身默认为语义符,需要转义才做token的。
为啥不能把语法统一了呢?
请过来人指教。
谢谢! |
|
ET
发帖数: 10701 | 3 what you are saying is a standard web app. For most mobile apps I know (not
those bank apps), there is no session used on mobile app. Have you ever seen
your gmail iPhone app session you out?
most of mobile app, you login with you credential, get a token which might
come with an expiration date, but it is barely used. If it is used, you need
to re-enter your login credential. But look at your facebook app,
instagram, twitter, when do you need to enter your login credential again?
Amazon mobile ... 阅读全帖 |
|
g*****g
发帖数: 34805 | 4 就是你觉得而已。重要的是数据,不是密码,一个用不过期的 token是最危险的。发密
码好歹只有一次。还有很多网站是登录要 https, 访问不用的,打死我都不会用不过期
的 token. |
|
g*****g
发帖数: 34805 | 5 一个不过期的token,爱干啥干啥,还要密码干什么。密码好歹一个 session只用一次
。你的 token可是每个request都用,被搞的概率大多了。
n.
候。 |
|
ET
发帖数: 10701 | 6 With all due respect for your knowledge in security and for the purpose of
clarification, saving a user's password is a bad practice. OK. Why do you
want to do that? You like put something into keychain, you can do the token
for enhancing the security. And, not all the web services have been designed
to handle username/password to make API requests. They just use token. What
do you use password for?
I am not gonna bring to another level discussion about jailbroken devices
and rooted devices. Tel... 阅读全帖 |
|
g*****g
发帖数: 34805 | 7 For a service provider, losing an access token is no different from losing
the password. Only worse it's in clear text. There's no holy grail, but I
fail to see how your proposal is better.
token
designed
What |
|
c*********e
发帖数: 16335 | 8 en,我也在想到底是用传统的session还是用token.
我朋友一公司,有6个独立的公司用的网站,都有独立的login username, password。
他老板想登录了其中一个网站之后,能直接进入另外一个公司网站(不需要再输入第二
个网站的用户名和密码)。这个如果用传统的session,可能没法做,不安全。用token
可能就能做了。 |
|
W***o
发帖数: 6519 | 9 token 或类似的方法可以解决
session 耗费资源
token |
|
c*********e
发帖数: 16335 | 10 用token,是不是要有2个服务器,一个authentication server,一个web server?
2个server怎么同时知道这个token的值? |
|
r**i
发帖数: 1222 | 11 如果authorization code grant,那access token request肯定在backend。不然人家
会从browser log你的clientid secret。
按照你的想法,就该用implicit grant。将在angular哪里处理token fragment |
|
a****i
发帖数: 1182 | 12 哦,没看清题,以为是要选一个技术来实现
不过我的意思是说web service 是用token而不是username/password来做security
从wiki来看,Basic也是在头里发个 Authorization: Basic aHR0cHdhdGNoOmY=
用户名和密码用来拿token,拿到以后就不需要了,是这样吧? |
|
O*******d
发帖数: 20343 | 13 cookie的加密和解密,可以在服务器端做。 跟browser没有任何关系。 hacker可以把
你加密的密码照原样送到服务器,服务器无法知道这是合法的密码还是被盗窃的密码。
但是用户的信息,即使被盗窃了,hacker无法解密,就无法使用。 hacker也无法知道
加密的内容是什么。如果有大量cookie,更无法知道哪个是有用户信息的。
现在用的较多的是OAuth方法来从第三方网站登录。 主要思想是用access token。
token是加密的,有用户信息。 第三方网站无法知道其内容,只能照原样传回去。 |
|
N********n
发帖数: 8363 | 14 You need a tokenizer and then construct an evaluation TREE based on
syntax of SELECT statement and input tokens. Once you have the eval
tree you can traverse it to get the result.
To write it all out during an interview they will have to simplify
it a lot, for example no SELECT ... FROM (SELECT ...). Basically a
lot of TREE operations and recursions. |
|
N********n
发帖数: 8363 | 15 首先要一个像样的TOKENIZER能够区分真假关键字。比如这个SQL里的WHERE就是
假的需要过滤掉。 " SELECT * FROM table /* WHERE age > 20 */ "
先搞TOKENIZER,然后SYNTAX分析。THAT ORDER。 |
|
c*********e
发帖数: 16335 | 16 /*也是一個关键字。
首先要一个像样的TOKENIZER能够区分真假关键字。比如这个SQL里的WHERE就是
假的需要过滤掉。 " SELECT * FROM table /* WHERE age > 20 */ "
先搞TOKENIZER,然后SYNTAX分析。THAT ORDER。 |
|
t**********1
发帖数: 550 | 17 其实你看我以前的帖子。我一直都说,用户应该在抢票前就输入支付信息。
抢到了,抢票机生成一个token,同时给用户前端和MQ的message。MQ就自动支付了。不
管支付成功或者失败,把结果放到一个redis好了,就用token做key。同时email或者短
信通知。
用户前端甚至可以js每10秒poll一下redis,看看有没有结果。
记住,自动支付要假设一定有结果。支付系统挂了不赖我们。支付系统挂了就要一直等
他恢复,等一天一年都不管我事。
你自己算一下,这样能不能work?
我告诉你了,只要能scale out,都不是事儿。 |
|
f*******t
发帖数: 7549 | 18 什么叫哪个地方被哪个改掉的?static语言一编译就知道哪里不对了啊。
登陆后restful api用session token验证,为啥每次都要给用户名和密码?
图片自然不会只要有链接就能随便访问,至少有session token或者其它验证factor |
|
f******2
发帖数: 2455 | 19 大家做webapp的时候如果需要consume第三方data(这里用google map做例子)有两种
做法:
1. 自己的server做proxy,所有的google api数据从自己server返回给客户端。
好处:这样做的好处是处理问题非常清晰
坏处:1. 一个坏处就是自己服务器资源消耗大
2. 很快就带到rate limit了(因为是同一个app token)
2. 直接让客户端request Google的URL,不过不太了解这个办法的细节和优缺点。问题
来了,
1)这个方法不需要token了吗?
2)这个方法似乎挺节约资源的呀,为什么这个做法不是主流? |
|
T********i
发帖数: 2416 | 20 还是那几个问题。我一直强调的。
1. 区块链的所谓token和物理实体不等价。故意混淆的都是耍流氓。
2. 所谓去中心化是扯蛋。掌控token和物理实体转换的就是中心。这个中心是他妈的货
币发行权。信去中心化的脑子都坏掉了。
3. 所谓区块链那些好处都是假民主。什么不能篡改之类的。因为你不能enforce强迫别
人用。人家照样在别处耍流氓,到区块链来收割你。
4. 指望区块链解决任何社会和技术问题是缘木求鱼。无监管的市场就是一个被严重操
纵的市场。 |
|
T********i
发帖数: 2416 | 21 还是那几个问题。我一直强调的。
1. 区块链的所谓token和物理实体不等价。故意混淆的都是耍流氓。
2. 所谓去中心化是扯蛋。掌控token和物理实体转换的就是中心。这个中心是他妈的货
币发行权。信去中心化的脑子都坏掉了。
3. 所谓区块链那些好处都是假民主。什么不能篡改之类的。因为你不能enforce强迫别
人用。人家照样在别处耍流氓,到区块链来收割你。
4. 指望区块链解决任何社会和技术问题是缘木求鱼。无监管的市场就是一个被严重操
纵的市场。 |
|
p******s
发帖数: 938 | 22 【 以下文字转载自 Programming 讨论区 】
【 原文由 phageous 所发表 】
要利用strtok来进行一些string的操作,结果却是segmentation fault,
code如下:
#include
#include
void main() {
char *str;
char *line="15:wildwood.eecs.umich.edu:018032:24.79 wildwood.eecs.umich.edu:018031:21.11 wildwood.eecs.umich.edu:018044:14.83 wildwood.eecs.umich.edu:018093:4.32";
str=strtok(line, ":");
printf("First token is %s\n", str);
while( (str=strtok(NULL, ":")) !=NULL)
printf("Next token is %s \n", str |
|
N******n
发帖数: 3003 | 23 In file included from /Developer/SDKs/MacOSX10.5.sdk/usr/include/stdlib.h:
61:
/Developer/SDKs/MacOSX10.5.sdk/usr/include/available.h:111:6: error: __
MAC_OS_X_VERSION_MAX_ALLOWED must be >= __MAC_OS_X_VERSION_MIN_REQUIRED
#error __MAC_OS_X_VERSION_MAX_ALLOWED must be >= __MAC_OS_X_VERSION_
MIN_REQUIRED
^
13 errors generated.
error: command 'gcc' failed with exit status 1
----------------------------------------
Command "/Library/anaconda/bin/python -c "imp... 阅读全帖 |
|
|
发帖数: 1 | 25 On your computer with web browser
1. go to https://www.gtexportal.org/home/datasets
2. You will be asked to login, so login with your google account
3. Randomly choose a small file to download (such as "GTEx_Analysis_v7_
Annotations_SubjectPhenotypesDD.xlsx"), this is to trigger the
authentication process
4. open developer console, run
"gapi.auth2.getAuthInstance().currentUser.get().getAuthResponse().id_token"
5. Copy this token
On your Linux command line
6. run the following commands to obtain ... 阅读全帖 |
|
|
b***e
发帖数: 1008 | 27 (1)Nanocomposites of Poly(lactic acid) and Surface-Grafted MgO Nanoparticles
Authors: Li, Yonghui; Sun, Xiuzhi Susan
Source: Journal of Biobased Materials and Bioenergy, Volume 5, Number 4,
December 2011 , pp. 452-459(8)
Publisher: American Scientific Publishers
link:
http://www.ingentaconnect.com/content/asp/jbmb/2011/00000005/00
?token=004417c96a66e67405847447b494a2f7a317b4255477921363375686f23d76fddf5c
(2)Soy Protein Polymers and Adhesion Properties
Author: Sun, Xiuzhi Susan
Source: Journal o... 阅读全帖 |
|
r*******9
发帖数: 274 | 28 来自主题: MedicalCareer版 - 请问推荐信 谢谢楼上两位的回复。不好意思,没有交代清楚背景。
现在还没有token,所以我叫医生把信和cover sheet装在信封里封好,签名,然后交给
我,等我拿到token后再三封推荐信一起寄出,并附一张Document Submission Form,
相当于三封推荐信附上一张Document Submission Form。请问这样做有问题吗? |
|
k**e
发帖数: 2728 | 29 发信人: clamchowder (DDD), 信区: MedicalCareer
标 题: <改编> Gira555: 做好准备,成功Match
发信站: BBS 未名空间站 (Wed Jun 17 17:01:39 2009, 美东)
PS 首先感谢很多前辈的努力,尤其是gira的帖子。我未经同意擅自改编,在此叩谢。
我觉得这么多申请贴,她写的是最全的。今天有个朋友在问我,好像精华区里找不到了
。我dig了一下,找出来,加了一些自己的体会,大部分用括号或者ps标记,如果想看
原贴,请用以下link, 其中还有很多别人的经验。同志们认真体会把。
http://www.mitbbs.com/pc/pccon.php?id=2289&nid=47175
****
一路摸索着做完了住院医申请的程序,觉得很多问题都是理所当然的,大家都应该知道
了。但是仍看见论坛上有人问相关问题,也有人发私人信件问,索性一起系统的写一下
申请需要做的准备工作。另外也希望如果问的不是私人问题的话,最好是发到公共论坛
上问,这样会有更多的人回答,也减少点我觉得要一个个回答问题和回答错误会误导别
人的压力。另外,... 阅读全帖 |
|
s********o
发帖数: 3319 | 30 本帖内容来自:
https://www.aamc.org/students/medstudents/eras/134592/timeline.html
Residency Applicants Timeline
Note: If timeline dates fall on a federal holiday, the activity will take
place on the next business day.
Mid-late June 2011
- MyERAS User Guide is available.
- Schools may begin to generate and distribute MyERAS tokens to applicants.
July 1, 2011
- MyERAS External Link Web site opens to applicants to begin working on
their applications.
- ERAS Support Services at ECFMG will begin generatin... 阅读全帖 |
|
|
|
w*******y
发帖数: 60932 | 33 Get a free token to unlock Alistair Overeem's character in UFC Undisputed 3
(Xbox 360 or PS3) by liking UFC Undisputed on Facebook!
Link:
http://www.facebook.com/UFCUndisputed?sk=app_161379357295384
Click the link and hit Like, then 'Click here to get Alistair Overeem' and
enter your information. The release date for the game is February 14th and
you will be emailed your token around that date. Promotion ends on January
20th.
Don't miss his fight against Brock on the 30th!
|
|
w*******y
发帖数: 60932 | 34 Buy.com has the kinect along with the three game bundle for 99.99.
Included:
Kinect Sensor
The Gunstringer Downloadable Token
Fruit Ninja Kinect Downloadable Token
Kinect Adventures Game
Power Supply Cable
Wireless Network Adapter
Manual
Link:
http://www.buy.com/prod/xbox-360-kinect-sensor-holiday-bundle-2
BOFA customers can get 3% cash back if ordered through their add it up
website.
|
|
f*****g
发帖数: 15860 | 35 guess this is like FT's token SNGs (18 players), top 5 all get $26/75 token,
6th gets something.
yeah, it could be profitable if you have good control, and at the end,
whether you have 500 chips or 5000 chips left, it doesn't matter when the
6th guy is busted.
the shortest stack i had was 100, while everyone had 5000-6000 except one (
who got 500), he was folding folding in hope of that i got out first, but he
apparently didn't realize although i only got 100, i finished my blinds (no
antes), an |
|
y********n
发帖数: 2063 | 36 I played ftp points game before, I guess still very easy to play. I play
35ftp (64ppl) buyin game, I get 1 ticket for 2000ftp per average 8-10 games.
Which is not very bad result. I guess partially the tournament player does
not
know how to play short table and heads up, give me a very good opportunity
to win the 1st.
If I play 300 ftp 75$ token game(6max), I guess I need play 10-12 times to
get one token, but that game is a bit little long(around 2.5 hours), so I am
not interested in it. |
|
p*******r
发帖数: 100 | 37 我特别怕turbo的,更别提super turbo了。
比较头疼token比赛几乎都是turbo的,每次都是到了还剩能拿token人数的1.2-1.3倍时
,就被迫开始allin了。 |
|
k***n
发帖数: 1682 | 38 well said.
fryking, i saw you playing a lot for mid night madness token. I bigin to
play for token now. It is a good strategy. Pay small for a big entry.
like |
|
f*****g
发帖数: 15860 | 39 pokeryjj知道,俺这人小玩家小见识,爱token如命,看见帐户里一堆花花绿绿的token
了,tourney $了什么的就如BT般开心,好像比钱还喜欢,呵呵,你说林子大了什么怪
鸟都有吧? |
|
f*****g
发帖数: 15860 | 40 不是说她花$60只是完全为了打个$75的token出来。
她在8.7的这个比赛里面赢率还是比较高的(不完全观察),所以往往可以打出4个什么的
$26 token来,再有选择的去打个把$75的比赛,或者别的$26的比赛...
这里是她今天的部分记录:
04/17/2009 Tier One $8+$0.70 (Turbo) (Turbo) $8 + $0.7 13/18 $0.00
04/17/2009 Tier Two $24+$2 Sit & Go (Turbo) $24 + $2 1/9 $75.00
04/17/2009 Tier One $8+$0.70 (Turbo) (Turbo) $8 + $0.7 1/18 $26.00
04/17/2009 $33 + $3 Sit & Go (Turbo) (Turbo) $33 + $3 2/9 $89.10
04/17/2009 Tier One $8+$0.70 (Turbo) (Turbo) $8 + $0.7 1/18 $26.00
04/17/2009 Tier One |
|
c**i
发帖数: 6973 | 41 A tale of two expats; Life is easier for Western expatriates in China than
it is for Chinese expatriates in the West. Economist, Dec 29, 2010.
http://www.economist.com/node/17797134?story_id=17797134&CFID=1
Quote:
"Female Chinese expatriates, too, tend to have a better time than men,
reckons Mr [William] So. (Perhaps they find the culture less sexist. Perhaps
they are luckier in love.) Male Chinese expats who have left their families
behind, by contrast, can’t wait for their tour of duty to end.... 阅读全帖 |
|
p*********w
发帖数: 23432 | 42 同步与备份zz
by GFW BLOG 功夫网与翻墙
来源:http://felixweblog.info/archives/197
由于本人工作原因,电脑里的文件资料、计算数据、设计图纸、建筑规范越来越多,而
且经常需要奔波各个施工现场,所以经常出现笔记本电脑不能随时带在 身边,文件夹
被某个小伙伴当“学习Linux影视文件”给cut。但是一旦需要这些文件的时候,却是懊
恼万分,猴急非常,恨不得flashback。刚好 最近冷锋过境、雨季来临,时间很多,琢
磨下同步与备份的问题。
在大学时代,自己最早是使用纳米盘和fs2you储存一些学习资料,分享一些小体格的文
件。能够接触这些东西,是因为当时在3DM做些简单的汉化和管理工作(不是工口?( ̄?
 ̄")? ),分享某些游戏的cracker。不过日子不久,纳米盘服务质量下降,基本沦为
p2p工具。而fs2you经过08年的奥运整顿,改名为rayfile后至今,苟且维持服务,速度
并不乐观。
所以说不管这些早期的网络硬盘有多大的空间,关键服务能否持续性才是关键。一个礼
拜前上传的文件,刚好七天,悄无声息被拐走了,这才是最可怕的。
很快,从... 阅读全帖 |
|
c**i
发帖数: 6973 | 43 (7) Benjamin Haas, Chinese Cook Obsessed with Jewish Coins. Los Angeles
Times, June 2, 2011.
http://www.latimes.com/news/nationworld/world
/la-fg-china-coins-20110603,0,2347877.story
Note:
(a) numismatics (n; Latin nomisma coin):
"the study or collection of coins, tokens, and paper money and sometimes
related objects (as medals)"
(b) shekel (n):
"1a : any of various ancient units of weight; especially : a Hebrew unit
equal to about 252 grains troy
* * *
2: a[n ancient] coin weighing one shekel"
... 阅读全帖 |
|
s********n
发帖数: 26222 | 44 【 以下文字转载自 Military 讨论区 】
发信人: smokinggun (硝烟), 信区: Military
标 题: Bernstein原著和方舟子剽窃文的对应分析ZT
发信站: BBS 未名空间站 (Thu Aug 25 02:01:14 2011, 美东)
China\'s Science Cop Plagiarized His Professor
While a PH.D. Student at MSU
Fang Shimin (aka Fang Zhouzi) is a well known figure in the world of
academia. Science magazine and Nature journals have several times reported
his fraud busting, whistleblowing activities in China. Science magazine
alone has given him the titles of “China’s science misconduct watchdog... 阅读全帖 |
|
S*********n
发帖数: 4050 | 45 Well by the same token, Mao should have been f*cked by Roosevelt.
Do you agree? |
|
s****r
发帖数: 31686 | 46 大侃刀有embedded death penalty waiver token in his brain |
|
k*******3
发帖数: 918 | 47 Falun gong's false accusation is notoriously rampant litigation. Falun gong
rampant litigation object widely, from China to foreign countries, from the
administrative department to civil society, from the head of state to
ordinary people, as long as it is telling the truth on the falun gong issue
or issued against falun gong's comments, are likely to incur the falun gong'
s rampant litigation. According to incomplete statistics, since 2001, falun
gong has been in the United States, Canada, Swede... 阅读全帖 |
|
j*j
发帖数: 5564 | 48 I guess it's not required by law, but a token of good intention from paypal.
paypal' |
|
c****s
发帖数: 5892 | 49 ■公车局停售代币的海报。
■乘客缴付车资进地铁站。
■地铁站内的自动贩卖机仍出售单个代币。
自从多伦多公车局(TTC)较早前公布明年1月起调高车资后,人们大量囤积公车代币的做法顿令TTC当局感到困扰。有见及此,TTC已暂停大部分代币销售安排,并且恢复出售公车车票这项临时措施。
新的临时车票将于周一(今天)开售。尽管TTC已暂停出售公车代币,但乘客仍可继续使用已购入的代币乘车。
TTC主席赞邦尼(Adam Giambrone)早前表示,若果公车局不暂停出售代币的话,便将损失500万元。
但批评者认为,TTC在处理车资加价安排方面应可准备得更好,而无需采取停止出售代币这项极端步骤。
市议员Denzil Minnan-Wong表示,一家大型机构应该有能力计划及预先考虑这类情况的出现。
TTC去年开始停售成人车票,原因该局指出,市面出现大量伪冒车票。学生及长者则仍然使用车票乘车。
悄悄印车票
但自从TTC宣布加价安排后,它已静悄悄地印制临时车票,并于周一开售,代替出售公车代币。地铁站将仍有单一个的代币透过自动贩卖机出售,使地铁乘客能够继续使用站内的自动入闸机。
每当乘客担心TTC即将加价时,他 |
|
c****s
发帖数: 5892 | 50 上周六中午,在士嘉堡Finch和Kenndy交界附近的Kimbermount Road发生二级火灾,造成两名中国女留学生烧死、一名华裔青年重伤。
经过了三天的调查,警方终于了解了第二名死者的身份。据悉,这名少女也是从中国来的留学生,原居住在Kitchener-Waterloo地区。她的身份已经被警方确认,但是应死者在中国的家属要求,不向媒体公布她的姓名。
警方发言人还透露,这名女死者是在起火现场主睡房的地板上被发现,当时她已死去。
另一名死者是20岁的中国留学生唐盈(Ying Tang音译)。她去年从兰州来加拿大,生前在“百年理工学院” (centennial college)就读酒店管理。同时,她也是屋主的侄女。
验尸报告证实,两名女子是因为吸入过多浓烟而窒息死亡。
至于火灾中被烧成重伤的男性名叫关源杰(Yuanjie Guan 音译)今年22岁,于2008年来到加拿大,曾在“百年理工学院”读过语言班。关源杰前晚经过手术后,算是熬过了一关,但仍然没有脱离危险期。
警方表示,关源杰受伤主要由于他试图扑灭大火。由于关源杰吸入过多的浓烟,医院使他昏迷,以减轻痛苦、便于治疗。
据悉,警方已成... 阅读全帖 |
|
