By John Gruber
WorkOS launches auth.md — an open protocol for agent registration.
Linked List: July 18, 2005
Monday, 18 July 2005
- Scott Knaster: Hacking Mac OS X Tiger ★
-
Scott Knaster’s new book on all sorts of Mac nerdery. Knaster’s been writing books for smart Mac nerds longer than just about anyone.
- iTunes RSS Tags ★
-
Web page documenting Apple’s RSS extensions for iTunes. The old PDF documentation is now a 404. (Via Dave Winer.)
- Greasemonkey Security Hole ★
-
Mark Pilgrim:
In other words, running a Greasemonkey script on a site can expose the contents of every file on your local hard drive to that site. Running a Greasemonkey script with “@include *” (which, BTW, is the default if no parameter is specified) can expose the contents of every file on your local hard drive to every site you visit. And, because GM_xmlhttpRequest can use POST as well as GET, an attacker can quietly send this information anywhere in the world.
His advice is to completely uninstall Greasemonkey.
(Via Anil Dash.)
- Dave Winer on Throwing Out PCs ★
-
Dave Winer says the reason he’s tempted to solve his malware problem by getting a new PC is that his current PC didn’t come with Windows installation discs, so if he wants to just wipe the drive and start over, he’d need to buy a copy of Windows — and the price of Windows is close to the price of a new PC.
Shows how out of touch with the Windows market I am — I had no idea some (most?) PCs don’t come with installation discs. That’s nuts.