I’ve encountered LiveNetLive a few times, it’s a service that runs on top of your website and creates a live community chat. Never had any problems with it, until yesterday, when I tried posting a comment on some blog.
Seems like LNL steals focus upon loading, which may happen a few seconds after you’ve already started writing a form. Needless to say that this is annoying at least.
But today, I’ve seen the problem in all of its glory. I’ve tried logging in to VideoLectures.net, I focused the username input, entered my username, tabbed to password input, entered password, pressed Enter, and only then realised that it stole the focus just before I typed the first letter of the password. My full password then went public to at least 8 people that were reportedly visiting the same page. What good is strong password hashing, XSS and session protection and whatnot, when you have a feature like this?
Needless to say I’ve changed my password immediately.
Update: I’ve contacted them and they replied promptly that this problematic auto-focus will be fixed soon.
I just published the slides and accompanying files for my <?php konferenca 2009 talk. You can download them here.
Update: video of my talk is available. And also other videos from the conference. All in Slovene.
Slovenian government decided that Linux and open-source aren’t appropriate for government usage. The reasons being (a recap from the source):
- Using open-source browser instead of horrible MSIE is inappropriate because “MSIE is free anyway, and using other browsers can cause problems with existing applications”. The facts that MSIE is the least secure A-grade browser on the market, and that in Slovenia Firefox has the biggest share apparently aren’t important.
- OpenOffice is a viable option (wow!)
- “Linux isn’t appropriate for workstations because it’s code is too open and it can become too vulnerable in case of mass usage.” I’m speechless.
- Linux is already used on most servers. Impressive.
- “Security is an issue with OSS, because the source code is available to general public.” Just as for #3, I remain speechless.
Source: slo-tech.com (in Slovene)
This is what you get if uninformed people make decisions. It’s utter non-sense with no solid arguments. Some of the points can in all fairness be called STUPID.