This is what work at Medeco looks like.
UPDATE: This was actually a little test on posting directly from a photo taken on the iPod Touch, and posted to a WordPress blog. Kurt Wilhelm was the unsuspecting subject in this picture.
This week’s GotW is Fantastic Contraption, a puzzle game where the goal is to get a pink ball into the pink area.
You have a work shop area, where you build the contraption to move the pink ball to the target area. When you press the Start button, your contraption takes off and moves by itself (hopefully) into the direction of the target (hopefully).
There are several different levels of difficulty, and the full version ($10) gives you access to more user-generated levels and the ability to generate your own levels.
We’re experiencing some speed issues with the website currently, and we’re trying to get these resolved as quickly as possible. Bear with us please.
For the last several years, ever since Facebook allowed third-party access to your data, your account with Facebook could have been taken over.
Not by Firesheep (although the principal is similar), but because of the third-party application actually leaking an access token outside of the conversation between you, Facebook and the third-party.
In a nutshell, the sequence of events allowing this are as follows:
So far it is very similar to the Firesheep issue. However, the twist here comes if the third-party application uses a legacy Facebook API:
Now the advertiser has the access token that the third-party application uses, and can use that to do the same actions you allowed that application. Best case it now has a list of your friends, worst case you’ve just given the advertiser the right to post on your wall.
And since requests are normally logged, it is even possible that when the advertiser’s site gets hacked, the hacker finds the log, containing these access tokens, and can do these same actions.
Symantec has identified this issue back in late April, and Facebook has since then taken steps to remedy this problem. However, none of these steps completely remedy the problem until September 1st, when the legacy API calls that allow this venue of attack are disabled, and replaced by OAuth.
So what can you do to prevent your account being used as a beach head of attack?
Symantec states that to their knowledge no Facebook users were impacted by this issue. However, this is a definite possibility of attack, and a few good security principles can keep your account safe (or safer) from attacks.
I was unfortunately tied up for the whole afternoon and part of this morning with production issues, but here is a little bit of information about the 2nd keynote for Google I/O 2011.
The keynote for Google I/O 2011 Day 2 is centered on the Chrome browser, and the HTML5 push.
The main focus seems to be on ease of management for the IT department: the hardware and OS fade away by being replaced by the netbooks, and the applications are centralized web applications. The main pain will actually be felt by the same IT department, since a lot of the applications in most organizations are not web based. Virtualization is an alternative there, but I haven’t seen a proven and reliable Remote Desktop or Virtual Machine client for Chrome OS yet. Until then, this remains an interesting alternative to installing a browser on a bare machine…
The first keynote of the Google I/O 2011 focuses completely on the Android platform. Here are some of the highlights.
Recently I heard Leo LaPorte in one of the Twit Network podcasts talk about Khan Academy. He was very enthusiastic about it, and recommended it to everyone. I followed his recommendation and checked it out.
Khan Academy is a completely free, donation-driven on-line learning resource. It covers an enormous range of topics, from simple arithmetic, through algebra and trigonometry, up to chemistry, history, and physics. The level of these topics also has a broad range, from kindergarten up to an academic level.
There is a certain game element thrown into the mix by keeping track of energy points. Everything you do – watching a video, doing an exercise – earns you energy points. Apart from the energy points, you can earn badges – ranging from correct answer streaks to becoming proficient in all mathematical exercises.
Khan Academy is definitely worth checking out, especially for people who consider themselves eternal students!
SlideRocket is an online presentation tool, that tries to put a new twist on the age-old and most of the time boring PowerPoint presentation. With SlideRocket, you can easily integrate audio, rich media, and instant feedback to bring a presentation to life.
VMWare is an industry-leading virtualization platform, that has a range of products covering anything from simple workstation to multi-core, multi-disk top-of-the-line server array.
By the sound of the press release, it seems to me that VMWare is trying to expand themselves past their core business of virtualization, and get more into cloud computing. Previous steps in that direction include VMWare View, ThinApp and Zimbra. Hopefully, the estimated 20,000 users of SlideRocket will continue to be serviced by this pretty awesome presentation tool.
Google announced Thursday that they will be bringing Google I/O to the web, naming it I/O Live.
After the tickets to Google I/O sold out in under an hour, Google decided to do the same thing several other companies (notably Progress with their Exchange conference) and bring the presentations to the web. They will be streaming live video from the two largest conference rooms, capturing the keynotes, but also session from Android and Chrome. There will be real-time captions of the live streams courtesy of Google Translate. And last but not least, you can submit questions directly to the sandbox developers.
Google I/O 2011 starts at 9AM PDT on May 10th.
ICT MxR lab responded to Google’s April Fools joke by implementing their gesture interface in about one hour. To accomplish that, they used a toolkit called FAAST (Flexible Action and Articulated Skeleton Toolkit) and implemented the program SLOOW (Software Library Optimizing Obligatory Waving). It uses the XBox Kinect system to capture the human motions. See for yourself what a simple prank can lead to: