Archive for the 'Internet' Category

a javascript history sniffing script with a past and implications

Wednesday, August 23rd, 2006

I happened to catch this blog post by Jeremiah Grossman that detailed a way a Web site owner could “steal” your browser history and check where you have been via Javascript and a list of Web sites. See his blog’s page source for his script. This concept is different than a mere Web referrer as a referrer only names the site you’ve been referred from, and this point of concept checks browser history.

After reading the post, I thought that I had heard of this concept before, and voilĂ , some of the later comments on the postings noted that there have been proof of concepts on this theme for a number of years. So I was correct.

And I’m thinking now, how could this (or other javascript history sniffing scripts) be any worse than the scripts that track advertising cookies?

However, I thought it amusing that Jeremiah wrote:

I wonder how long until the marketers start using this for additional visitor profiling.

Oh yes, it’s the *marketers* we have to be afraid of. Personally I was thinking of bad guys who want to figure out where one does their online banking.

[tags]javascript, point of concept, tracking, cookies, advertising, black hat [/tags]

McCain campaign announces new Web savvy hires

Wednesday, August 23rd, 2006

This is a rare political leaning post. It is what it is. Also, I don’t care which team you’re rooting for, hoping for or voting for. No matter which way you lie, there’s a whole political leaning blogosphere for that.

Glenn Reynolds points to a Hotline blog post announcing the new Internet savvy hires by the nascent John McCain for President campaign.

These new hires are not surprising to me, as a few weeks ago I was getting a bunch of hits for this post on McCain’s 2000 campaign and his Web master Max Fose. Due to my Google powers, the post is number #5 in the Google SERPs. And Max, if you do happen to read this, I still think what you did in 2000 was awesome.

However, the hiring of one Nicco Mele was a tad bit amusing, as Mr. Mele was the Web master for Dean for America. Aside from the political schadenfreude that I shall leave to others, I can’t help but hope that Nicco has tighter control of McCain’s opt-in email list than what happened to Dean for America’s. *ahem*

In the interest of full disclosure: Way back in 2000 I was living in Vermont and during the primary season I was a Democrat turned McCain supporter. I even went to rally in Burlington and met the Senator. All I can say is that he was gracious and he was shorter than I expected. There’s a picture of him, somewhere, holding my then toddler daughter. I voted for him in the Vermont Republican primary due to the odd Vermont law that says you don’t have to be registered for a political party to vote in their primary. And so it goes.

[tags]John McCain, McCain campaign, Max Fose, Nicco Mele, political Web sites, campaign Web sites [/tags]


Tuesday, August 22nd, 2006

The Aggrevator is a solution for people who want to aggregate a large number of RSS or Atom feeds and use a MySQL database on the backend for storage. I’ve noticed it used as a feed fetcher for feed aggregating Web sites.

Agent: Aggrevator/0.8.0

[tags]RSS, RSS aggregation, RSS feed, user agent, Aggrevator[/tags]

site info for Monday, August 21st

Monday, August 21st, 2006

Here’s a few things happening with the blog….

-I’m getting immense amounts of traffic on this post about gabbly. Whoever is doing the referring must using some sort of javascript because none of the visitors are showing referrers at all. They are hitting my blog with all sorts of different user agents but no referrer string. I’m wondering if it’s a bookmarking site throwing the traffic and which one it could be…

-As part of the newest version of PodPress, I enabled the Mobatalk audio commenting system. I am not sure if I will like it, but I figured why not. Nevermind, disabled the plugin as it apparently fouled up some other plugins. I will troubleshoot later.

-I’m amused to note that I’m seeing a healthy audience of people interested in Web 2.0 services reading the blog. Some of them are following up on particular blog posts I’ve written and others are just following what I have to write about.

-Finally, my spelling can be atrocious at times. *ahem*

[tags]gabbly, Web 2.0, podpress, mobatatalk, I need a spellchecker for this blog. [/tags]

How about a podcast or videocast on the first date?

Monday, August 21st, 2006

With the decided abundance of social bookmarking, social tagging, social shopping and social chatting sites, one would think that there would be at least a few online dating sites embracing podcasting and/or videocasting.

However, out of all of the Web 2.0 companies I’ve seen so far, I can only find one online video dating site using podcasting and/or videocasting called PodDater. It doesn’t seem that Match or Yahoo personals is using these technologies at this time.

Hmmmm….a business opportunity anyone?

[tags]Web 2.0, online dating, podcasting, videocasting, poddater[/tags]


Monday, August 21st, 2006

Buzzshout is a listing and review service of so called Web 2.0 companies and services. Owners of such companies can go ahead and submit a listing to the site.

While the domain name may sound a little goofy, the logosurf page boggles the mind.

[tags]buzzshout, Web 2.0, Where is the sock puppet today? [/tags]


Sunday, August 20th, 2006

Protopage happens to be yet another Web based configurable start page, very similar to Netvibes. It appears that protopage is a bit more graphics friendly than other start pages.

If you’d like, you can always add cleverhack to your protopage.

[tags] Web start page, configurable start page, protopage, netvibes [/tags]

Sunday morning Web 2.0 review

Sunday, August 20th, 2006

Yet another Web 2.0 aggregation post

-First find of the week is Seth Godin’s Web 2.0 Traffic Watch List which predictably enough, tracks traffic trends of Web 2.0 sites. Upon reviewing the list, some of the sites I’ve heard of and even use, but there’s plenty more that I had no idea existed. I’m sure this list will keep me busy for a while.

-Second, is Crowdstorm, which bills itself as a social shopping site - much like Amazon’s user recommendations and ratings. It’s in beta and I received an invite to join. The two hurdles that Crowdstorm needs to overcome is that a)obviously, it needs more users to be effective and b)it seems to be UK oriented at the moment (note the kelkoo reference) so I am not sure if it’s intended for a US audience. The Crowdstorm admins may want to tag their site with “The best UK social shopping” or whatever they prefer.

One other item of note, I like the crowdstorm site design - they could actually go a little wider on the body of site. Perhaps make the thumbnails a little larger and the text bigger - although I’m wondering if they are trying to allow for mobile device viewing. And for the cool factor, their markup is XHTML Strict - even using PNGs for the images.

[tags]Web 2.0, Web 2.0 traffic, alexadex, crowdstorm[/tags]


Wednesday, August 16th, 2006

Liferea is a news feed reader for Linux systems using GNOME.

Agent: Liferea/0.9.1 (Linux; en_US;

[tags] RSS, RSS readers, news readers, Liferea, Linux, GNOME [/tags]

AOL digging for buried treasure

Wednesday, August 16th, 2006

From CNN Internet company to dig for gold at home of spammer’s parents

I’m conflicted here, is the punchline that AOL is so much in trouble that are hoping to find buried treasure or is it that they are digging for buried treasure at a house that belongs to the parents of a spammer ?

[tags]AOL, spam, spammer, buried treasure[/tags]

This is what you call an Iranian exploit

Monday, August 14th, 2006

Heh. Blogger goes and checks out Iranian President Ahmadinejad’s new blog, clicks on some sidebar links and then notices one link in particular, serving up a nice and tasty MS IE exploit.

I doubt the exploit is targeted towards one geographic region, so don’t go nosing around unless you’re using something other than IE.

Update: While some are incorrectly calling it a hoax, the “exploit” in question was really a problem with Symantic’s Norton Personal Firewall identifying some HTML on the site as malicious.

[tags]world wide blogosphere, IE exploit, Iran [/tags]


Sunday, August 13th, 2006

Another Web 2.0 site built on the theory of “tagging”, tagjag is a blogosphere (and more) metasearch powered by From what I could gather, their big thing is that their search results are outputted in OPML.

The reason why I noticed tagjag this morning is because their results page is requesting a favicon.ico file from a source in their results page. In other words, a page of mine appeared in tagjag results.

Host: [a tagjag user]
Http Code: 200 Date: Aug 13 07:57:24 Http Version: HTTP/1.1 Size in Bytes: 1406
Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; {4E03DC9D-FD53-BB95-8D69-3A0090FB2439}; .NET CLR 1.1.4322; .NET CLR 2.0.50727)

I dunno. Why can’t tagjag just cache the favicon file rather than request it every single time? First, it does use my bandwidth (yeah, I know I could fix that via .htaccess) but secondly, I now know who exactly is using tagjag and finding any results that pertain to my blog. Hrm.

UPDATE1: I’ve gotten a few questions about why the favicon.ico request matters. Well, the thing is that yes, other services do pull my favicon.ico file, like for example Google Desktop or My Yahoo. However, those users opted in (for lack of a better term) to use my site, either by subcribing to my feed or by clicking through to a link of mine.

tagjag/ is different in that the users are merely using the service and yet a third party will know what they are searching for, if that third party appears in the results pages. No opt in or clickthrough or subscription to the third party’s site required.

OT: I have to hand it to the enthusiasm of the bluedot folks, ever since I first wrote about them I’ve been getting hits on searches for bluedot from Seattle based users.

[tags],,, favicon.ico, Web 2.0[/tags]