ShadowRunner @ LEGOWorld

Really proud of the work we did earlier in the year with LEGO & Intel. Can finally shout about it!


OpenFrameworks debut - ShadowRunner

Promo video for my first OpenFrameworks project with Make & See



Over 2 years again, I’m gonna have to nuke this thing soon. Maybe replace with a tumblr.


The “Don’t Click” TwitterBomb

So this Twitter bomb is spreading like wildfire – it works by overlaying the Twitter page in an invisible iframe (spotted by @peterc).

As most people stay logged in to Twitter, when they click the ‘Don’t click’ button (who can resist?!), it actually submits a tweet for you.

I’m not sure if this is exploiting any vulns at all. Some people are crying out ‘XSRF!!’ etc, but I’m not sure this is the case.

See attached screenies for firebug explanation :)

Twitbomb - before

Twitbomb - after

See Simon Willison’s presentation on web security for a more thorough explanation of click jacking and other exploits.

update: looks like Twitter have reacted

Comments (1)

Now hosted at Linode

So after 5 or 6 years of paying a ridiculous rate for one of the first VPS accounts I ever bought, I’ve decided to switch. Pure laziness has cost me a fortune with that account I swear! I’ve started moving all of my personal hosting over to Linode, a UML (update and now Xen) VPS provider in the states.

Why Linode?

  • They have great packages, readily available (slicewhat?) and competitively priced.
  • Lots of distributions to choose from, all easily managed in their web application.
  • They supported the Rails Rumble! Performance during the rumble was great.
  • Friendly support on IRC, direct from the owner in some cases.

    They’ve already proven themselves at hosting Rails developers and I’m sure a lot of knowledge has been collected for future support, so I have a good feeling about this.

    Things might be a bit unstable for the next few days while I move people around, but it’s looking good so far.


    Now Linode fully support Xen VPS’. I submitted a support ticket to find out if I would notice a performance improvement if I migrated. They confirmed that I would and started the migration process. All I had to do was shut down the server, hit a button in their (excellent) control panel and wait 5 minutes while the VPS image transferred.


« Previous entries ·