Thursday, October 09, 2008

You've slipped, Google

Oh, how the mighty slip (even if they don't fall)!

:-P Hype aside, I was taking Google Chrome out for a spin by pointing it to Gmail, and here's what hit me.


Did you notice the missing images on the page, including the Google Mail logo? I was somewhat amused to see the message, "Some of the elements on this page came from an unverified source and were not displayed." Google's browser couldn't verify the authenticity of the images that were being served from their own servers? I wonder what it was that it couldn't verify. Quite ironical, isn't it?

Of course, it's a rather trivial error - some of the images on the page were coming from an http server rather than the https server that the page itself was being served from, as the image below confirmed.

Tuesday, August 19, 2008

Google Talk Desktop Client - Security Lapse

As I exploited a rare server lapse in my office's network settings, the thought of logging in to GTalk crossed my mind, and I gave in to the temptation. Along came another thought - that of sniffing at the HTTP packets leaving my machine, and I fired up my copy of HTTP Analyzer to do the same. What I found out was not very reassuring.

This is the scene: you have a Google Talk desktop client which you use to log on to Google's chat service. You type in your username and password, and click on sign-in. You wait a few moments, and find yourself signed in. All nice and fine. What you wouldn't know is that, unlike your GMail account, login to which happens through a secure sockets layer (SSL) in addition to client-side encryption, the GTalk client sends your login credentials in clear-text, or the HTTP equivalent of clear text, HTML-encoded text. Of course, as any programmer knows, this is trivial to decode. All you need is a scientific calculator which can do hex and / or a quick Javascript program.

I looked through the Google Talk website for a place to report this security hole and, to my chagrin, couldn't find any. I looked at various Google Groups to see if they have a place where I could report this finding, but I couldn't locate any. A Google search turned up only this: http://www.nta-monitor.com/posts/2005/08/googletalk.html, which is very closely related to my finding. In fact, I was appalled that such a closely related problem had been left unattended for more than three years!

Should you be worried?

No, not unless you surf the Net from an unreliable or unknown cyber cafe / browsing center. If you're logging on from home, then you should be worried only if you're the victim of a man-in-the-middle attack (not very likely, realistically speaking). In that case, your Google Account password would be up for grabs, and it would be time for you to either switch to the GTalk client in GMail, or the Talk gadget, or in the worst case, a new Google ID.

If you're a Google employee reading this post, and would like more information, you can reach me through my blog. However, my guess is that your colleagues would be able to give you more extensive inside information :-)

Wednesday, August 06, 2008

The secret of how I am going to be a genius

I'd like to be remembered as a genius, or at least someone with an exceptional intellect (it's another matter that I may not possess one). So, it stands to reason that I have to achieve something in my lifetime that will give people a reason to think so about me. Of late, however, I'm more and more vulnerable to the charms of Morpheus, who insists on giving me company no matter where I am, what I am doing, but his presence is not utterly devoid of advantages.

I have observed this rather strange phenomenon: when I am doze off while reading something, my mind seems to continue to read the sentence that I nodded off at, but with a difference: it supplies its own words, different from that in the text, so much so that the striking difference and the ill-logic sometimes jars me awake! I believe that this is going to lead me to a stupendous discovery one day.

At least, I like to think so; how else can I explain away sleeping in the office, right at my desk? ;-)

Wednesday, July 30, 2008

Not just in India

When disaster strikes, it is usually very painful for the victims. When it's caused by forces of nature that we are often powerless against, the situation becomes even more poignant. Hurricane Katarina received a lot of coverage due to the immense swath of destruction that it left in its wake, and rightfully so. Such coverage normally results in some good coming out of it - more people become aware of the damage to human life and property, and that usually results in more people becoming willing to help those in need.

When these things happen in developing countries, say India, there's a phenomenal amount of press coverage on how badly things have been managed, how the city / district was totally unprepared, how the poor have, as can only be expected, borne the brunt of the damage, how life will never be the same for the displaced and affected victims, and so on and so forth. It's another story, and one that isn't known as widely, that such disasters cause havoc even in developed countries like the US of A. Apparently, according to this article, New Orleans has not exactly bounced back from the depths of despair as readily as we'd like to think. Much of the city seems to resemble a ghost town, and even three years after the hurricane and the resultant floods struck the city, life can hardly be described as having returned to normal.

Having said all that, hope still lurks amidst gloom and painful memories, as it always does when human enterprise undertaken with intelligence is tinged with compassion and benevolence.

Friday, July 18, 2008

Rechargeable Mosquito-hitting Swatter

The following text was seen on the packing material of an "electric mosquito swatter" that I recently purchased. The text below was copied from it, verbatim, with punctuations intact. It's one of those "All your base are belong to us" moments.

Main Character:

  1. Rechargeable Type: It furnishes 2 pcs. of 1.2V high quality rechargeable batteries which can by recharged in recycle for more than 600 times. It is quite practical and economic.
  2. Twice-speed discharge: It adopts an innovative twice-speed discharge circuit which can output 2500V in a moment. So, it has the best result for result forhitting mosquito.
  3. Electric Shockproof Net: It can kill mosquito which is sucking blood on human bodies but it is harmless to human. when touching the net on flat surface, without any feeling of electric shock, so, it is safe for use.
  4. Leakproof Net: It consists on a special 3-layer net which can easily catch insect and never leak out.

Directions:

  1. When charging, please use AC 100-240V, 50HZ power source.
  2. Before using, please charge the batteries for 8-15 hours. They can be recharged in recycle for 600 times.
  3. When hitting insect, you can easily kill them just by pressing it's switch.
  4. When the indicator twinkle, it indicate that the batteries run out. Then, the swatter should be recharged for 8-15 hours.

Warning:

  1. For more safety, do not press the switch or touch the ourface of net when swatter is in charge.
  2. Please do not finger the medium-layer net.
  3. Please shake swatter for cleaning off insect carcasses which remain in net. Be sure don't wash it with water so as to avoid shortcircuit.
  4. The swatter may become without high-voltage or in low-voltage conditions when it absorbe damp in wet weather, the effect will be declined. Then it can be dried by blowing with electric blower or shining with sunshine. The effect will be recovered soon.
  5. Children must instruce under adult when use it.

Monday, July 14, 2008

Let's save English from cold-hearted, cruel and almost casual murder

la lingua pura, as Dan Brown calls English in his "da Vinci Code", is the perennial victim of cruel, cold-blooded and almost casual murder. Just consider these dollops of excellence in communication that a knowledgeable English speaker must put up with day in and day out (the text in brackets are mine).

NOTE: These are all quoted verbatim from email messages that I have the bad fortune of reading.

  • We constantly are trying to improvise the tool to provide additional features. [sure you’re trying to improvise. Now, how about some improvements for a change?] There are a lot of suggestions [are a lot of suggestions, or are lots of suggestions? Make up your mind!] coming from the users like you who would like to have various features in this tool...Please use this facility generously and help us to help you better. [yes, we shall be generous, and will "help you to help us better"]
  • Please revert back for any further clarifications in this regard. [shall I also include the negative -5 for clarification?]
  • Finally we are got the response from web service & thanks for your co-operation. [all your response are belong to us and thanks for all the fish]
  • Can u give the xml request in your Adapter side(Helper Application side) not in the sample xml request ? ( Meaning Helper Application side your handle request, so that request we want.) [now, that parenthetic saved the day! We'd have been very confused otherwise]
  • This will be different call. He only requested to setup at that time. I will check with him and rearrange the call. [this was from a manager]
  • It is my mistake only I missed out earlier as M is on leave I could not able to concentrate on it. I will see it won’t happen again. [sorry, I couldn't able to resist including this only]
  • I am also sending J for raising NAIF's for SDP and Open Zone for Live source application connectivity from R [edited] Platform. So that they will be in place before this will be migrated onto R from D [edited] platform. [phew!]
  • We will have small meeting. I will let you know the timings. [The world is full of small things]
  • I reviewed the doc, I updated some sentences and added some commends [wonderful! Thangs a dun!]
  • Each environment will have different different settings [and each sentence will have different different errors]
  • S is not the write contact, Could you please let me know the issue details [ah, he's the "read" contact; now I get it!]
  • Currect Implementation : if(manualcbuk != null && manualcbuk != "null" && manualcbuk !=""){ [To be sure, this is an excellent example of how code ought not to be written, still...be very sure while writing code, son!]
  • I didn't have nothing more then this to estimation….So the estimation will obviously grow up. [it will, but when will you?]

And on and on it goes!

Have you come across such gems in your career? If so, improve my day by sharing them :-)

Tuesday, May 13, 2008

404 Funnies

Have you ever faced a situation where a link you clicked on led to a bland "Page not found" error? Yes? Well, here are some funny variations of the same.

http://www.dailymotion.com/404.php

http://home.disney.go.com/error/pagenotfound

http://www.homestarrunner.com/404

http://www.homestarrunner.com/systemisdown.html

http://www.craigslist.org/404/

http://www.happycog.com/404 (I liked this one particularly)

http://www.pen-and-paper.de/404.php

http://jeremyfuksa.com/404

http://www.galiacho.es/404 The blue screen on this page reminded me of something almost everyone has seen at some point of time (if you're a Windows user, that is).

http://www.martinkorner.co.uk/404

http://www.nextwaveperformance.com/404 This one has a cute flowchart that is, well, funny! :-)

http://www.porcupine.gr/404 This page is somewhat thoughtful, and slightly philosophical.

http://kottke.org/404 This one has a frank headline!

Saturday, April 19, 2008

Tata Sky channel mess - some help

You might have noticed that the channel bundles offered by direct to home TV service providers are confusing, to say the least. To make things a little less hazy (for myself), I sat down to arrange their channel subscription packs into neat columns so that a side-by-side comparison is possible. Here's the result. Hope you find it useful.

Sunday, March 23, 2008

Random PC Tip - How to repartition your harddisk on Windows

Since a few of my friends seek my help often on PC-related matters, I thought it'd be a good idea to post tips and how-tos once in a while. This is the first of such posts.

On Windows XP and Vista, partition management is a pretty simple task, thanks to Microsoft's partitioning tools that are, I should say, getting better and better. That, however, doesn't mean that they have become good enough to obviate third-party partitioning software: tools like Acronis Partition Manager, Paragon Partition Manager, and others go deep where Windows' tool only scratches the surface, but that's a topic for another day. In this post, I'll tell you how to use the built-in Windows partition manager to get some basic partitioning tasks done.

First off, here's a list of what you can't do on Windows XP using the built-in tool:

  1. you can't resize (shrink / expand) existing partitions
  2. change the partition type (like you can with Linux's fdisk).

What it does allow you to do are:

  1. delete a partition
  2. add a partition

I think that there are quite a few good articles that explain clearly how to go about these tasks, and I don't think I have much more value to add there. However, there is one thing that I'd like to point out to make life simpler. That is, instead of opening the Disk Management Console through the usual "My Computer->Manage->Disk Management" or "Control Panel->Administrative Tools->Computer Management->Disk Management", you could simply go to Start->Run (WinKey + R on any Windows from Win2k onwards) and type in "diskmgmt.msc" (without the quotes).

Now that you're in the Disk Management Console, here's what you should do in Windows Vista if you want to resize a partition.

  1. First off, make sure that you see the main disk. This is usually shown as Disk 0 on most PCs - including laptops - that boot from a hard disk (see Fig. 1 above). If you've got your PC from a vendor like Dell (yes!), HP (avoid them!!), IBM (now Lenovo), Acer (good, though low-end), among others, then it's likely that you have just one partition, though it's also equally likely that you have a "rescue" or "recovery" partition which you'll do well to leave alone if you don't know what you're doing. In my case, the main disk is "Disk 0".
  2. Now, identify the main partition - this will usually be the biggest partition (see picture above), that is, the partition with the biggest size. In my case, the main partition is called "OS (C:)".
  3. Now, you're ready to repartition your harddisk. Before you go ahead, ensure that you have a backup of your important, personal files, in case something goes wrong. And, believe me, I've gone through enough software glitches to know how frequent they are, so please don't risk going ahead without a backup. Make a backup NOW, and verify that the backed up files are readable!
  4. Select the biggest partition by clicking it ("OS", in my case). Now, right-click it and choose the "Shrink Volume" option. You'll be presented with a dialog box which will tell you what the maximum size you can shrink the partition to is ("Size of available shrink space in MB").
  5. Type in a value in MB (megabytes). Note that 1000 MB = 1 GB (for the purists out there, I'm well aware that it should be 1024 MB, but go talk to the harddisk manufacturers for this, they seem to have eaten 24MB for every GB). Click Ok.

Congratulations, you've just repartitioned your disk! With the free space you have now, you can follow the instructions in this Microsoft article to create a new volume and format it. Once done, your new partition is ready to use.

Saturday, February 16, 2008

A novel approach to philanthropy

These days, it's quite fashionable for a corporate entity to announce its philanthropic ventures. Some of them take pride in their ventures even when their actions clearly inform us that such pride is quite undeserved. However, this company that I really admire, Google, takes an off-beat approach to giving, and that's something that it can't really help since thinking differently is in its DNA. Okay, here's the link.

Saturday, January 05, 2008

Sounds from another era

Mind-blowing! That's the one word that readily came to mind when I listened (again) to this phenomenal song from the movie "Anjali". Back when I was a kid around the time this movie was released, I wasn't much into music appreciation though I must have had some vague idea about what good music was all about, helped along in no small measure by The Maestro. Otherwise, it's not possible that I would have been able to appreciate gems like "onna nenacchE pAttu padicchEn" and "ninnukOri varNam".

These songs are real masterpieces of orchestration; they show that music can be highly technical and pleasing, and that these two need not be mutually exclusive. If you can, get a good pair of earphones / headphones and listen to the above song. Unless you listen carefully enough, you'll fail to notice the chorus of males humming in an almost indiscernible, but unmistakable way. These voices add something to the song that I'm unable to express in words, but if you listen to it, you'll perhaps know why I am in tremendous awe of the man, the true jnAni of music - Maestro Ilayaraja.

Tuesday, January 01, 2008

Father to son

This is why I think Phil Collins is one of the better singers. You have to listen to this soothing melody to know what I mean. The lyrics follow:

Somewhere down the road you're gonna find a place
It seems so far, but it never is
You won't need to stay,
But you might lose your strength on the way

Sometimes you may feel you're the only one
'Cos all the things you thought were safe,
Now they're gone
But you won't be alone,
I'll be here to carry you along
Watching you till all your work is done

When you find your heart, you'd better run with it
'Cos when she comes along, she could be breaking it
No, there's nothing wrong,
You're learning to be strong

Don't look back
She may soon be gone, so don't look back
She's not the only one, remember that

If your heart is beating fast, then you know she's right
If you don't know what to say, well, thats all right
You don't know what to do?
Remember she is just as scared as you.

Don't be shy, even it hurts to say
Remember, you're gonna get hurt someday, anyway
Then you must lift your head, keep it there
Remember what I said
I'll always be with you don't forget
Just look over your shoulder I'll be there.
If you look behind you, I'll be there.

Now, that feels better.