Posted on October 18th, 2008 by Chris.
Categories: Chris, General/Misc., Philosophy.
Are you someone who “does the right thing?”
You may think you’re a person who does the right thing if you don’t cheat on your taxes, are never mean to your friends and try to help them, and try to spend some time donating or volunteering for a good cause.
To be morally good (or good at anything really) this is a very low standard. (more…)
Posted on October 9th, 2008 by Tim.
Categories: General/Misc..
Facebook has blocked me from writing new notes. WTF?
You have exceeded the limit for creating notes!
You are temporarily blocked from creating notes. Block times may vary depending on the feature and scale of abuse. Blocks cannot be lifted.Misuse of Facebook’s features may result in your account being disabled.
If you have questions or concerns, you can visit our FAQ page.
Something tells me their spam detectors have gone awry. Frankly, not only is this block completely ridiculous (I post once a week perhaps) I find the wording of this error message to be threatening and aggressive… not the sort of tone you should adopt with your customers, the people that are the source of your daily bread.
Posted on August 27th, 2008 by Tim.
Categories: General/Misc..
I’m a 1337 hax0r. Don’t believe me? I’ll prove it.
Step 1: Rent some space in a carrier hotel
Step 2: Steal an IP using BGP (Border Gateway Protocol). This is not an exploit! This is how BGP is MEANT to work!
Step 3: Make sure the IP you steal is of a well known update server (for instance: java.sun.com)
Step 4: Spoof an upgrade package with a trojan of your own design.
Step 5: …
Step 6: Profit!
This is a blended attack that would clearly be EXTREMELY successful. This exploit is independent of operating system. The reason this attack works is because many software developers make the faulty assumption that the IP addreses and domain names can be trusted. Not to pick on Sun, they’re not the only ones to get this wrong. Apple, Sun, and Winzip are just a few of the larger companies that have products vulnerable to this exploit. There are likely hundreds of smaller companies vulnerable as well.
The fix is really not difficult. Don’t trust an untrusted protocol. Use SSL. Verify those certificates. And for the love of all that is holy, use certificate signing on update packages!
Oh, and who actually gets this right? Microsoft. Guess SDL works after all.
Posted on June 28th, 2008 by Chris.
Categories: Chris, Games, General/Misc..
Idea in one sentence: Develop a platform that enables a high performance gaming experience over the internet.
Consider it the Firefox of gaming, if you will; bridging the gap between Yahoo Games and Half-Life 2. Where is it?