2010 Apr 21, 6:51Adds SHA 256 & 512 to HTTP instance digest: 'The IANA registry named "Hypertext Transfer Protocol (HTTP) Digest Algorithm Values" defines values for digest algorithms used by Instance Digests in
HTTP. Instance Digests in HTTP provide a digest, also known as a checksum or hash, of an entire representation of the current state of a resource. This document adds new values to the registry and
updates previous values.'
hash cryptography http instance-digest sha security technical ietf rfc standard 2010 Apr 21, 6:49"OAuth provides a method for clients to access server resources on behalf of a resource owner (such as a different client or an end-user). It also provides a process for end-users to authorize
third-party access to their server resources without sharing their credentials (typically, a username and password pair), using user-agent redirections."
oauth authorization security privacy internet web rfc standard technical 2010 Apr 21, 6:48"The Web Open Font Format, already backed by Mozilla and many type foundries was accepted by the World Wide Web Consortium yesterday, marking the first stage in its standardization. The submission
included a surprising new sponsor: Microsoft."
font microsoft web internet typography arstechnica browser technical 2010 Apr 15, 2:52Scans of some of a few instances of hate mail Neil deGrasse Tyson received from elementary school students after demoting Pluto to non-planet status.
hate-mail mail humor cute children neil-degrasse-tyson science pluto space planet astronomy 2010 Apr 12, 10:44QR code degenerator allows you to mess with some pixels of a QR code or insert pictures without messing up the encoding.
qrcode qr technical 2010 Apr 11, 3:53Has graphs of browser usage by version over time to show upgrade speed for Chrome, IE, and Firefox. Chrome has a lovely graph.
graph statistics infographics web browser chrome ie firefox version upgrade technical. 2010 Apr 11, 3:51"In fact, more air marshals have been arrested than the number of people arrested by air marshals." Its easy to get awesome stats like this when talking about lawlessness on airplanes given its great
infrequency.
statistics humor security bruce-schneier airplane 2010 Apr 6, 11:17A thread on HTTPBIS concerning about how one might standardize hotels and other such proxies that inject redirects to their own payment or T&C agreement sites.
http httpbis reference ietf network 2010 Apr 1, 2:42Its like a better version of what I was doing with my Web Frotz Interpreter. Its all client side javascript, HTML, & CSS to play Z-machine based interactive fiction games. They even do the saved
game in a URL piece.
if interactive-fiction game web browser webapp 2010 Mar 31, 7:59Defines the mime type for JSON as well as JSON itself.
technical json mimetype mime javascript ietf rfc specification 2010 Mar 31, 7:54"Summary: Exploring cross-domain threats and use cases, security principles for cross-origin requests, and finally, weighing the risks for developers to enhance cross-domain access from web
applications running in the browser."
technical msdn microsoft security xss XMLHttpRequest web browser 2010 Mar 28, 4:37Mike Davey builds a Turing Machine drawing ones and zeros on tape. Pretty cool, but the tape length is only finite.
fsm turing-machine video technical 2010 Mar 28, 4:29Some interesting queries for Windows search like size:>50MB, broadcastdate:2005, datetaken:6/12/2006.
windows search syntax win7 howto technical 2010 Mar 26, 5:16Interesting point that web browsers block HTML FORMs from submitting to some ports in order to avoid malicious servers from getting clients to do their dirty work. Of course it requires the host on
the other side of that port to be able to interpret the HTTP request as something relevant to the protocol they actually expect.
security web browser ie http html form technical 2010 Mar 26, 2:28"Widgets are client-side applications that are authored using Web standards, but whose content can also be embedded into Web documents."
w3c spec widget web application technical 2010 Mar 24, 2:41Amazing video of coming soon features to Photoshop. Photoshop has been verb'ed and now Photoshop is working on tools to make photoshopping a photo that much easier.
adobe video photoshop via:waxy technical 2010 Mar 23, 9:10Laziness is a virtue in programming esp. wrt. security. Marc Stiegler gives a talk at Google on the topic.
via:kris.kowal programming security video google lazy 2010 Mar 21, 2:59Google's reference docs for their calendar apis.
google calendar api programming reference technical 2010 Mar 18, 7:23Right behind Bruce Schneier, Douglas Crockford now gets his own Facts page including awesome facts like "Crockford is the sole user of the super-strict equality operator (====), which either returns
true or kicks you in the balls."
douglas-crockford humor javascript nerd technical
Some rights reserved