UNWTO has been always a perfect source for all tourism students, experts and academic leaders of tourism management. I have been studying on tourism for 9 years and UNWTO (earlier known as (AKA) WTO) has been my first door to knock when I need the facts and figures concerning tourism industry.
So unwto has released Tourism Highlights 2010 and it is greater than the others. They have changed the reporting design and that is a good call I guess. It is now more clear to digest the report. But I wish that it should have cover more pages. 12 pages is not enough to abstract the whole year.
Here is the UNWTO explanation of Tourism Highlights 2010;
UNWTO has changed the reporting style and the new one is so much better...
Also some new tourism students might need to know what UNWTO is and how it serves. So here is so brief information about UNWTO
Quoted From UNWTO
The first impression on the report is that due to the financial crisis, international tourist arrivals declined by 4.2% in 2009 to 880 million. I qutoted the below abstract of Europe resurlts in 2009 from the report;
Quoted From UNWTO
UNWTO Tourism Highlights 2010 can be downloaded as PDF. There are two versions of the pdf file as it appears every year. One is Low resolution (759Kb) and the other is High resolution (3Mb). Here are the direct links;
- High resolution (3Mb) : http://www.unwto.org/facts/eng/pdf/highlights/UNWTO_Highlights10_en_HR.pdf
- Low resolution (759Kb) : http://www.unwto.org/facts/eng/pdf/highlights/UNWTO_Highlights10_en_LR.pdf
Enjoy the figures
Microsoft has been detected a vulnerability inside the asp.net which lead to attackers to view data, such as the View State, which was encrypted by the target server, or read data from files on the target server, such as web.config.
This vulnerability is detected in all asp.net versions and a patch has not been released fo this yet. Instead, microfoft decided to cover this security vulnerability with a precaution (workaround).
You could reach official Microsoft advisory for this issues from below link;
Also, Scott Guthrie has release 2 posts concerning this issue;
Here is also some of the FAQs concering this issue;
Quoted from Microsoft Website
What is the scope of the vulnerability?
- This is an information disclosure vulnerability. An attacker who successfully exploited this vulnerability could read data, such as the View State, which was encrypted by the server. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to produce useful information that could be used to try to further compromise the affected system.
This vulnerability can also be used for data tampering, which, if successfully exploited, could be used to decrypt and tamper with the data encrypted by the server.
Is this a security vulnerability that requires Microsoft to issue a security update?
- Microsoft is currently working to develop a security update to address this vulnerability. Microsoft will release the security update once it has reached an appropriate level of quality for broad distribution.
What causes this threat?
- The ASP.NET use of encryption padding provides information in error responses that can be used by an attacker to read and tamper with the encrypted data.
What might an attacker use this vulnerability to do?
- An attacker who successfully exploited this vulnerability would be able to read data, such as the View State, which was encrypted by the server. This data may also be tampered with by the attacker. If tampered with, the attacker could send this data back to the server and observe the error codes returned by the server. By observing these error codes, an attacker could gain enough information to decrypt and tamper with the encrypted data.
An attacker who successfully exploited this vulnerability could also read data from files on the target server, such as web.config, which the worker process identity already has access to.
Can I create a custom 404 page and a default redirect for all other errors to help protect against this issue?
- No. An attacker could still draw a distinction between a 404 error and other errors. Homogenizing errors is a crucial component to help protect against this attack.
Wish to be in a safe world, haa :)
Microsoft Internet Explorer 9 beta has been released on the 15th of September in 2011 which was yeterday. The new version of IE is so much better than the others.
There is not so much to tell here. So it is better to try it by yourself. The Internet Explorer 9 Beta could be downloaded from below link;
Enjoy your browsing :)
The perfect moment has come !
Umit Ilhan's new website http://www.umitilhan.org/ has been online today. The website design look prety amazing and I am sure we will see some good stuff in that website although I am a little disappointed that none of net framework stuff has been used for the website.
Here are some hot links from website.
- Umit Ilhan Articles : http://www.umitilhan.org/articles.html
- Umit Ilhan Videos : http://www.umitilhan.org/videos.html
- About Umit Ilhan : http://www.umitilhan.org/about-me.html
- Umit Ilhan Photographs (Which I find very Narcissist but good though) : http://www.umitilhan.org/photos.html
So, we expect him, at least, write a review here about this little introduction post.