Posts Tagged ‘twitter’


Loren Wiener aka mrinternet
Melbourne Australia
10 August 2012 (tomorrow for many of you)

Convenience  vs.  Security You Do not Have to Choose 

We are all grateful for Mat Honan from Wired full story here raising to our attention the ease that we sometimes offer hackers. I was in charge of Business Internet Products and Security in a previous life for a large Telco and I wasn’t even aware of how easy some of this was, for the hacker.  The daisy chain effect where accounts are linked etc. was part of the issue, and not a relatively new event (5 years or less old) the not so tight processes at Amazon and Apple (now changed thanks to Mat ) was another part also not new. But the part where it pretty much all started is the part many take for granted, and the oldest issue, that many is that of the domain name. Mad had linked (daisy chained) various accounts) in the process of identification a home address was needed, and this was freely offered by looking up Mat Honan’s address from his domain name. Public addresses, for all domain is public by default as technical, billing, and domain owner name is required. There are options for all domain names to hide this information, and you can usually just not put in address in this. If we learn nothing else here (besides doing back-ups) is hide, use a PO box, or do not offer your address on your public domain name info.

Note: I hope Mat gets back his data, and I for one would contribute to any costs in helping him do that. We need more Mats’

Advertisements

Twitter Gets Twitchy

Posted: September 2, 2010 in Misc Tech
Tags: ,

From Twitter 1 minute ago

Hi @mr_internet,

Over the coming weeks, we will be making two important updates that will
impact how you interact with Twitter applications. We are sending this notice
to all Twitter users to make sure you are aware of these changes.

What are applications?

There are over 250,000 applications built using the Twitter API. To use most
applications, you first authorize the application to access your Twitter
account, after which you can use it to read and post Tweets, discover new
users and more. Applications come in many varieties, including desktop
applications like TweetDeck ( http://www.tweetdeck.com/ ), Seesmic (
http://seesmic.com/ ), or EchoFon ( http://www.echofon.com/ ), websites such
as TweetMeme ( http://tweetmeme.com/ ), fflick ( http://fflick.com/ ), or
Topsy ( http://topsy.com/ ), or mobile applications such as Twitter for iPhone
( http://itunes.apple.com/us/app/twitter/id333903271 ), Twitter for Blackberry
( http://www.blackberry.com/twitter/ ), or Foursquare ( http://foursquare.com/
).

Update 1: New authorization rules for applications

Starting August 31, all applications will be required to use “OAuth” to access
your Twitter account.

What’s OAuth?
* OAuth is a technology that enables applications to access Twitter on your
* behalf with your approval without asking you directly for your password.
* Desktop and mobile applications may still ask for your password once, but
* after that request, they are required to use OAuth in order to access your
* timeline or allow you to tweet.

What does this mean for me?
* Applications are no longer allowed to store your password.
* If you change your password, the applications will continue to work.
* Some applications you have been using may require you to reauthorize them or
* may stop functioning at the time of this change.
* All applications you have authorized will be listed at
* http://twitter.com/settings/connections.
* You can revoke access to any application at any time from the list.

Update 2: t.co URL wrapping

In the coming weeks, we will be expanding the roll-out of our link wrapping
service ( http://t.co ), which wraps links in Tweets with a new, simplified
link. Wrapped links are displayed in a way that is easier to read, with the
actual domain and part of the URL showing, so that you know what you are
clicking on. When you click on a wrapped link, your request will pass through
the Twitter service to check if the destination site is known to contain
malware, and we then will forward you on to the destination URL. All of that
should happen in an instant.

You will start seeing these links on certain accounts that have opted-in to
the service; we expect to roll this out to all users by the end of the year.
When this happens, all links shared on Twitter.com or third-party apps will be
wrapped with a t.co URL.

What does this mean for me?
* A really long link such as
* http://www.amazon.com/Delivering-Happiness-Profits-Passion-Purpose/dp/0446563048
* might be wrapped as http://t.co/DRo0trj for display on SMS, but it could be
* displayed to web or application users as amazon.com/Delivering- or as the
* whole URL or page title.
* You will start seeing links in a way that removes the obscurity of shortened
* links and lets you know where each link will take you.
* When you click on these links from Twitter.com or a Twitter application,
* Twitter will log that click. We hope to use this data to provide better and
* more relevant content to you over time.

Thanks for reading this important update. Come and check what’s new at
http://twitter.com.

Thanks,
The Twitter Team