Do you really need it?
'contributing to the platform'
Java plugin vulnerability
the 'open web' illusion
clean Google Reader theme
more on 'Do Not Track'
honoring users' privacy prefs
'interplay'
the illusion of trust (2)
December 2011
November 2011
October 2011
September 2011
August 2011
July 2011
June 2011
May 2011
April 2011
March 2011
February 2011
January 2011
December 2010
November 2010
October 2010
September 2010
August 2010
July 2010
June 2010
May 2010
April 2010
March 2010
February 2010
January 2010
December 2009
November 2009
October 2009
September 2009
August 2009
July 2009
June 2009
May 2009
April 2009
March 2009
February 2009
January 2009
December 2008
November 2008
October 2008
September 2008
August 2008
July 2008
June 2008
May 2008
April 2008
March 2008
February 2008
January 2008
December 2007
November 2007
October 2007
September 2007
August 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006
April 2006
March 2006
February 2006
January 2006
December 2005
November 2005
October 2005
September 2005
August 2005
July 2005
June 2005
May 2005
April 2005
March 2005
February 2005
January 2005
December 2004
November 2004
October 2004
September 2004
August 2004
July 2004
June 2004
May 2004
April 2004
March 2004
February 2004
January 2004
December 2003
November 2003
daily pointers
AORTAL - the anti-portal,
here's today's daily pointers:
02/04/12
Without Many Feathers «
» » 0100101110101101
» » Eclectica Magazine
(RSS)
[daily pointers archive]
Some rights reserved.
'contributing to the platform'
Move The Web Forward | Guide to getting involved with standards and browser developmentJava plugin vulnerability
Attack against TLS-protected communications(more info: Transport Layer Security)
clean Google Reader theme
everySub user script(for Firefox, Safari*, and Chrome*)
[Trivium]
*I've only tested it in Firefox. /joe.jenett
honoring users' privacy prefs
Mozilla Publishes Developer Guide on DNT
Related:
Introduction to Do Not Track
'interplay'
The evolution of the webThe color bands in this visualization represent the interaction between web technologies and browsers, which brings to life the many powerful web apps that we use daily.
the illusion of trust
Fraudulent *.google.com Certificate at Mozilla Security BlogMozilla was informed today about the issuance of at least one fraudulent SSL certificate for public websites belonging to Google, Inc.
Related:
Falsely issued Google SSL certificate in the wild for more than 5 weeks | Naked Security
Google Online Security Blog: An update on attempted man-in-the-middle attacks
a more beautiful web?
Beauty of the WebAs amazing as the web is, its potential is immeasurably greater. Internet Explorer 9 was designed to let that potential shine through. Click below to see how developers and designers are creating a more beautiful web using HTML5 and advancements in Internet Explorer 9.
They also state, "A focus on HTML5 and modern standards enables the same markup across browsers." A little late to the party and a seemingly Windows-centric vision of 'standards' (proprietary, as in the past), in my humble opinion. I should note that both Apple (Safari) and Google (Chrome) also seem to have self-centered visions of the web (and standards) lately, each as if HTML5 was their own baby.
Note: This is not an endorsement,
'handy browser feature test'
The HTML5 test - How well does your browser support HTML5? (ads) [The Letter]marketing tactics vs. web standards
Apple's HTML5 Showcase Isn't HTML5, Blocks Other Browsers(see Apple - HTML5)
It seems like Apple is using the same sneaky marketing tactics as Microsoft does with its HTML5 demos page - which doesn't really use any HTML5 either. This similarity is hardly surprising considering both companies are pushing a non-Free patent-encumbered codec for HTML5 video.
banking/e-commerce at risk
Creating a rogue CA certificateThis successful proof of concept shows that the certificate validation performed by browsers can be subverted and malicious attackers might be able to monitor or tamper with data sent to secure websites. Banking and e-commerce sites are particularly at risk because of the high value of the information secured with HTTPS on those sites. With a rogue CA certificate, attackers would be able to execute practically undetectable phishing attacks against such sites.