2010 Mar 31, 7:54"Summary: Exploring cross-domain threats and use cases, security principles for cross-origin requests, and finally, weighing the risks for developers to enhance cross-domain access from web
applications running in the browser."
technical msdn microsoft security xss XMLHttpRequest web browser 2010 Mar 28, 4:37Mike Davey builds a Turing Machine drawing ones and zeros on tape. Pretty cool, but the tape length is only finite.
fsm turing-machine video technical 2010 Mar 28, 4:29Some interesting queries for Windows search like size:>50MB, broadcastdate:2005, datetaken:6/12/2006.
windows search syntax win7 howto technical 2010 Mar 26, 5:16Interesting point that web browsers block HTML FORMs from submitting to some ports in order to avoid malicious servers from getting clients to do their dirty work. Of course it requires the host on
the other side of that port to be able to interpret the HTTP request as something relevant to the protocol they actually expect.
security web browser ie http html form technical 2010 Mar 26, 2:28"Widgets are client-side applications that are authored using Web standards, but whose content can also be embedded into Web documents."
w3c spec widget web application technical 2010 Mar 24, 2:41Amazing video of coming soon features to Photoshop. Photoshop has been verb'ed and now Photoshop is working on tools to make photoshopping a photo that much easier.
adobe video photoshop via:waxy technical 2010 Mar 22, 8:40PDF overtakes Word as targeted attack vector of choice.
security office adobe pdf word powerpoint microsoft technical statistics internet malware 2010 Mar 21, 3:22Google Calendar Sync is an Outlook plugin that syncs your Google and Outlook calendars (you get to pick 1way and direction or 2way sync'ing). This almost looks like what I want but perhaps my feature
requests are too obscure for someone to have already implemented them:
Events marked personal added on my Outlook calendar should get full 2-way sync'ing with my Google calendar.
All other events added on my Outlook calendar should be assumed to have private company information and should get 1-way sync'ing with just the time and location - no attendees or subject or
desceiption.
All events added on my Google calendar should get full 2-way sync'ing with Outlook and there should be marked personal.
I doubt I'm going to find a pre-made app to do this so I guess I should get coding. Otoh, if they ever bring the updated Android OS that has Exchange support to my G1 maybe none of this would be
necessary...
google calendar outlook microsoft tool free technical 2010 Mar 21, 2:59Google's reference docs for their calendar apis.
google calendar api programming reference technical 2010 Mar 18, 7:23Right behind Bruce Schneier, Douglas Crockford now gets his own Facts page including awesome facts like "Crockford is the sole user of the super-strict equality operator (====), which either returns
true or kicks you in the balls."
douglas-crockford humor javascript nerd technical 2010 Mar 18, 7:15This article describes the largest problem with the Acid3 test: "Acid3 often didn’t test things web authors wanted, but instead it tested things that were broken or not implemented regardless whether
anyone truly cared."
acid3 web browser html dom test technical 2010 Mar 13, 5:27WebFinger is finger but for the Web...
webfinger web google finger http metadata url technical 2010 Mar 12, 1:28
It was relatively easy, although still more difficult than I would have guessed, to hook my bespoke website's Atom feed up to Google Buzz. I already have a Google email account and associated
profile so Buzz just showed up in my Gmail interface. Setting it up it offered to connect to my YouTube account or my Google
Chat account but I didn't see an option to connect to an arbitrary RSS or Atom feed like I expected.
But of course hooking up an arbitrary Atom or RSS feed is documented. You hook it up in the same manner you
claim a website as your own via the Google Profile (for some reason they want to ensure you own the feed connected to your Buzz account). You do this via Google's social graph API which uses XFN or
FOAF. I used XFN by simply adding a link to my feed to my Google profile (And be sure to check the 'This is a profile page about me' which ensures that a rel="me" tag is added to the HTML on your
profile. This is how XFN works.) And by adding a corresponding link in my feed back to my Google profile page with the following:
atom:link rel="me" href="http://www.google.com/profiles/david.risney"
I used this
Google tool to check my XFN
connections and when I checked back the next day my feed showed up in Google Buzz's configuration dialog.
So more difficult than I would have expected (more difficult than just an 'Add your feed' button and textbox) but not super difficult. And yet after reading this Buzz from DeWitt Clinton I feel better about opting-in to Google's Social API.
technical atom google buzz rss social 2010 Mar 12, 9:20Charles Stross on the business and technical aspects of writing and selling a series of books - specifically The Family Trade series for which the next in the series is due out soon.
charles-stross family-trade book literature business 2010 Mar 12, 7:56A tool to run Google's ECMA conformance test suite on your browser.
chrome web browser javascript technical tool test google 2010 Mar 12, 2:32Google's indexer now examines HTML5 microdata and they provide a tool to test out your pages microdata
html html5 google search microformats metadata rdf technical 2010 Mar 11, 4:26The iPhone application lifecycle.
iphone apple development technical sdk reference 2010 Mar 11, 3:39How to do audio & video in the latest version of Opera
html5 html video audio opera web browser technical development reference 2010 Mar 11, 3:33"The headers and captions on http://diveintohtml5.org/ use an open source font called "Essays 1743." The creator of that font was looking for a tutorial on HTML5, came across my site, and was
pleasantly surprised to see his own work on prominent display. He now wants to update his font to include stylistically appropriate Unicode arrows, which I will then use with my captions.
The internet is awesome. It's so wonderfully intertwingled."
html html5 mark-pilgrim font technical 2010 Mar 10, 5:21The lifecycle of an Android application. How to gracefully handle getting paused, stopped, etc.
android activity application technical programming lifecycle
Some rights reserved