This is Powerlord's Typepad Profile.
Join Typepad and start following Powerlord's activity
Join Now!
Already a member? Sign In
Powerlord
Recent Activity
Hey, in addition to using FXAA, we should use JPG instead of PNG for screenshots! After all, because JPG uses less resources it must be better, right?
One of the Telecom industries greatest weapons against Net Neutrality is misinformation. For instance, as shown in the comment above, the Telecoms have successfully managed to confuse not discriminating based on the source of data (i.e. Google or YouTube) with not discriminating based on the type of service (VoIP, HTTP). True Net Neutrality is the former, not the latter. It's fine to discriminate by traffic type as long as you don't discriminate based on source. And before you claim this is a "problem for the future," Comcast and AT&T have already tried to charge Google, etc... for the Google traffic Comcast/AT&T deliver to their customers. This is despite the fact that Google has already paid (or not depending on the agreement) with its peers to interconnect with them. See: Interconnect agreement on Wikipedia: http://en.wikipedia.org/wiki/Interconnect_agreement
Toggle Commented Feb 15, 2011 on The Importance of Net Neutrality at Coding Horror
"otherwise unexciting Intel Core i7 platform upgrade" Jeff, your article timing sucks. In case you missed it, there was another platform upgrade at the beginning of 2011. Namely, the Sandy Bridge platform upgrade, which introduced a host of changes and new features. The least exciting one there was actually the onboard graphics update, which still comes nowhere near the performance of standalone nVidia and AMD cards. One of the major changes that has a direct bearing on this article is the new memory controller, which is significantly faster than the ones in the older i5/i7 processors. Anandtech talks about the Sandy Bridge processors here: http://www.anandtech.com/show/4083/the-sandy-bridge-review-intel-core-i5-2600k-i5-2500k-and-core-i3-2100-tested
"This is yet another example of why passwords should never be stored in a sites database (in clear text or encrypted). The only correct way to store passwords is a salted hash. I knew this two years ago when I created www.my-msi.net. Even if a hacker were able to get a list of emails and 'passwords' the 'passwords' would be useless since more than one password can hash to the same value, there is no way (on earth or heaven) to go from a hash to clear text!" It wasn't in cleartext. Unfortunately, they were using DES with a two-character salt. The same technique that UNIX was using 30-40 years ago. The same technique that no Linux/BSD system worth its salt has used for at least 10 years because of how quickly it can be broken. Heck, the Debian Linux machine I was using 10 years ago was using an MD5-based scheme with an 8-character salt, and even that's no longer used by a modern Linux/BSD system because it's too weak.
Toggle Commented Dec 16, 2010 on The Dirty Truth About Web Passwords at Coding Horror
If you're looking for the sale on Steam, you're likely too late... Steam changes their daily sales at 10am PST / 1pm EST... and it's nearly noon now PST / 3pm EST. Having said that, today being the last day of the sale, Steam is likely running a Best Of sale. I don't know, because steampowered.com is blocked where I work.
Toggle Commented Nov 29, 2010 on My Holiday in Beautiful Panau at Coding Horror
@Nicolás Alvarez: The States issue State IDs that look almost identical to Drivers Licenses. Driving is not mandatory to having a license. @Nov8r: Having a network-wide login doesn't require it to be implemented using OpenID. It just means you need access to the same database.
Toggle Commented Nov 24, 2010 on Your Internet Driver's License at Coding Horror
Web accounts in general have two parts: Authentication and Authorization. OpenID passes the Authentication part off to a random third-party. It's the perfect case of favoring convenience over security. As a web developer, I feel this falls too far on the convenience side, and I'm unwilling to potentially compromise my system's Authorization scheme by allowing untrusted third-parties for the Authentication phase. Convenience over security is also a major reason as to why Windows post-NT still has a checkered security history: Windows 2000/XP and its "create all users as Administrators" default on standalone or non-Active Directory networked computers.
Toggle Commented Nov 24, 2010 on Your Internet Driver's License at Coding Horror
@Mystagogue: No, SSL/TLS negotiation happens before most HTTP headers, including Cookie. TLS has a possible exception for the domain name (Host?) header, but support for that is not mandatory... Apache web server, I'm looking at you! Also, the cookie specification allows you to specify that cookies are only sent if it is a secured transmission.
Toggle Commented Nov 17, 2010 on Breaking the Web's Cookie Jar at Coding Horror
Hopefully that closes the bold. It does in the preview window. @Jo and Kang Su G. "It would seem this Firesheep would also work on wired connections within the same subnet. Is that not the case?" It depends on the networking equipment. If it's a hub, then yes. If it's a switch or router, then no. Hubs fell out of favor years ago because Switches, for slightly more money, were considerably faster. Namely because a switch doesn't broadcast every packet to every computer, only to ones with matching addresses... or to the network gateway/router, which is responsible for sending the packet on to the next part of the network, or in home-use cases, to the public Internet.
Toggle Commented Nov 15, 2010 on Breaking the Web's Cookie Jar at Coding Horror
@Learn Violin & Bobby D: I see we have a new form of spammer... @Justin Hart: I'm thinking about buying one of the Buffalo routers. I was going to through Amazon (I have an Amazon Prime trial account until August 2011), but they ran out of this model... and now link to their affiliate buy.com, which costs quite a bit more. I may get one from NewEgg, simply because it's the same price as Amazon was ($69.99 USD), and looks like it also has free shipping... just not 2-day. P.S. Am I the only one who hates the layout change NewEgg made earlier this year? The page is 3 times longer than before and has relocated some of the useful information down the page.
Toggle Commented Oct 11, 2010 on Because Everyone Needs a Router at Coding Horror
"If we do nothing else except help lead the world away from the ancient, creaky, horribly broken bulletin board model of phpBB and vBulletin -- attempting to get information out of those things is like panning for gold in a neverending river of sewage -- then that is more than I could have ever hoped for. " Just because a product doesn't meet your needs doesn't mean the product doesn't meet the needs of someone else. phpBB and vBulletin are good for holding conversations, but not at Q&A. Similarly, StackExchange is good for having Q&A, but not good for conversations. You seem to be aware that SE isn't good for conversation, as you in turn added chat to Meta.SO... chat rooms which looks suspiciously like a non-threaded bulletin board system (i.e. phpBB) topic masquerading as a real-time chat.
Toggle Commented Sep 13, 2010 on Go That Way, Really Fast at Coding Horror
Some of this has already been said, but... There are a few things people regularly overlook about CSS: 1. Multiple selectors can have attributes assigned to them in the same block. 2. To go along with 1, selectors can have attributes assigned in multiple locations in the same (or different) stylesheet files. 3. HTML elements can have more than one class. I'll repeat this, as this is often misunderstood. HTML elements can have more than one class. class="there are four classes" is a class attribute with 4 different, space-separated classes. Attributes assigned to those four classes will be applied to the element with that class attribute.
Toggle Commented May 28, 2010 on What's Wrong With CSS at Coding Horror
Powerlord is now following The Typepad Team
May 28, 2010