I accidentally caused a little brouhaha last week - for which I would like to apologise. In my blog post about BMW's unencrypted software updates, I said: Judging from the files, it would appear that the infotainment system is made by Magneti Marelli with components by Wind River, AutoSAR, and Nvidia Tegra. Looking at the copious mentions of systemd and freedesktop it's a Linux… Read more »
Here's a fun little game for all the family! What is the minimum number of characters required to perform a successful XSS attack? Let's take an entirely theoretical example - suppose we have a site which echos back user input without sanitising it. So a search for " <em>" turns the whole page italic. *ahem* A hacker might think, "Hurrah! Now I can directly… Read more »
When is a string not a string? When it's a series of control characters! Not a particularly funny riddle, but one I've been wrestling with recently. Imagine we want to write a program which displays a Twitter user's name. Not their @ handle, but their "real" name. For example, instead of @POTUS, display "President Obama". Easy, right? Not quite. What happens when a user… Read more »
Friends, allow me to wallow in a little boasting! Four years ago, I made a modest proposal for a new HTTP Code to indicate censorship. A few days ago, RFC 7725: An HTTP Status Code to Report Legal Obstacles became an approved standard by the Internet Engineering Task Force. This allows a website, proxy, or ISP to explain to the user that the resource… Read more »
I've just got a WiFi light switch. As I've explained previously, swapping out all my existing light bulbs with Smart Bulbs would be hugely expensive and has the disadvantage of not working when the switches are off at the wall. A WiFi light switch (theoretically) allows me to control the lights from my phone - and anyone else to use the physical buttons on… Read more »
The UK has some excellent laws preventing discrimination. According the Equality Act (2010) it is illegal to discriminate on the basis of... age being or becoming a transsexual person being married or in a civil partnership being pregnant or having a child disability race including colour, nationality, ethnic or national origin religion, belief or lack of religion/belief sex sexual orientation That's a pretty good… Read more »
The BMW i3 is an amazing electric car - let down by very shoddy software. That's a huge problem - software runs our lives and, if it is defective, it can ruin us. We used to have separate categories of device: washing machines, VCRs, phones, cars, but now we just have computers in different cases. For example, modern cars are computers we put our… Read more »
As regular readers know, I've turned a BLE Beacon into a wireless business card. Physical Web used the Bluetooth beacon standard to continually broadcast not an ID number, but a URL. If you're in my proximity, you can grab my contact details. The one problem with the beacon I have is that it has an exposed button. Every time it got bumped in my… Read more »
Selfie sticks - like most modern inventions - are utter tosh. But they've rapidly brought down the price of Bluetooth buttons. So who am I to complain? Let's take the venerable AB Shutter 3 - You can find it on Amazon for around £2 including postage - or around $2 on AliExpress. Frankly, that's stupidly cheap. OK, let's put this to work as something… Read more »
Last week I was invited to attend a product launch by BQ. They're a small company based out of Spain who create some curiously innovative products - including smartphones which natively run Cyanogen. I'm particularly looking forward to reviewing their Ubuntu Tablet later in the year. The thing which really caught my eye was Zowi (pronounced Zoë). It looks like this: And it dances… Read more »
@edent around the web