Home Home  Forum Forum  News News  <b>Visit BurnWorld!</b> Visit BurnWorld!  
Last Shout - not visible
You are not authorized to view Shouts.
 
Latest News
News
OCZ Barebone Gaming Notebook Shows up Online

  OCZ Barebone Gaming Notebook Shows up Online


Brandon Hill (Blog) - June 6, 2008 2:41 PM

OCZ Barbone Gaming Notebook in-stock at Buy.com for $669.99 after mail-in rebate.

In mid-May, DailyTech broke the news that OCZ would be entering the DIY notebook market with its Barebone Gaming Notebook. Less than a month later, the notebook is finally hit e-tailer store shelves.

"For years consumers have wanted to build their own mobile computing platforms, but the product offerings and market simply did not serve them as they did in the desktop do it yourself segment," said OCZ Systems Solutions Product Manager Eugene Chang back in May. "With the OCZ Do-It-Yourself Notebook initiative, OCZ empowers with the resources like validated component guides, documentation, tech support, and a warranty to allow consumers to configure and build a true gaming notebook with the exact specification that matches their unique requirements."

Buy.com now has the OCZ Barebone Gaming Notebook (OCZNBIAS15DIYA) in stock for $719.99 with free shipping. Buyers can send off for a manufacturer's mail-in rebate to drop that price to $669.99.

That price will get you the actual 15.4" notebook, requisite Intel PM965 chipset, 512MB NVIDIA GeForce 8600M GT mobile GPU, 8x DVD burner, and 9-cell battery. The processor, memory, HDD, WiFi/Bluetooth adapters, and operating system must be provided by the buyers which would easily push the price close to, or over the $1,000 mark.

It's nice to see that OCZ is giving buyers a choice with a system that they can configure and put together themselves, but many may wonder what if any cost savings can be realized by going this route considering the steady drop in pricing for notebook computers.

http://www.dailytech.com/OCZ+Barebone+Gaming+Notebook+Shows+up+Online/article12012.htm

by LOCOENG, Monday, 09 June 2008 02:07 Comments(0), Read all
News
Just What It Was Dreading -- Intel Monopoly Rocked By Official FTC Investigation

  Just What It Was Dreading -- Intel Monopoly Rocked By Official FTC Investigation

 Jason Mick (Blog) - June 7, 2008 11:20 PM

The FTC announced Friday that it will formally examine whether Intel abused its dominant position

Somewhere at the headquarters of AMD, there must have been a cheer that went up on Friday.  After months of losing ground to Intel, employee layoffs, and under the shadow of Intel's looming Nehalem architecture, the company finally had some good news to be happy about.

It’s no small mystery that AMD these days simply seems incapable of outcompeting Intel.  Intel argues that this is due to its superior products.  AMD, however, has long maintained that Intel was deploying anticompetitive processes, which it says are digging it into a hole from which it cannot escape.  However, despite a passionate ad campaign and lengthy discussions with antitrust officials in the U.S., AMD has seemingly had a tough time selling its idea that Intel was cheating in the microprocessor war.

The U.S. Federal Trade Commission (FTC), which supervises free trade in the U.S., announced that it was launching a formal antitrust investigation against Intel.  The stakes are high for both Intel and AMD; the total market for microprocessors racked up $225 billion in sales last year. 

Both Intel and AMD realize what’s at stake and have spent tens of millions in legal expenses and on public relations campaigns.  AMD had previous success in Europe, Korea, and Japan -- all of which have investigated Intel or threatened it with possible fines.  However, the biggest victory -- a U.S. antitrust investigation -- seemed out of reach until this week.

State authorities and federal appointees from the Bush administration have been taking a more lenient approach to antitrust that their European counterparts.  However, the major decision Friday marked a sharp new shift in policy. 

The new investigation originated with the new blood -- William E. Kovacic, the new chairman of the trade commission.  With the backing of his fellow commissioners, he reversed the decision of Deborah P. Majoras, the previous chair, who had been blocking the investigation for months to the frustration of those on Capitol Hill.  Majoras was a more lenient appointee, and helped work out the antitrust settlement in 2001 with Microsoft.

It will take months before formal charges against Intel might be made, so the upcoming administration’s stance will greatly factor into the case.  AMD is relying on the federal case as only one state -- New York, at the behest of attorney general Andrew M. Cuomo -- has agreed to investigate Intel on a state level.  California attorney general Jerry Brown denied AMD's pleas, derisively commenting that he was "not barking at every truck that comes down the street."

D. Bruce Sewell, Intel’s senior vice president and general counsel, says that the U.S. antitrust laws are different than European ones, and it will not be charged.  Intel is planning on racking up its Capitol Hill efforts, though, likely in the form of lobbyist dollars.

The first signs of the upcoming bad news for Intel appeared when chip manufacturers began to get subpoenaed by the FTC.  The FTC is working with Europe and other foreign governments to obtain evidence to use against Intel in a possible case.  Mr. Sewell said that he was working amiably with the FTC on a less formal review since 2006 and that Intel would remain cooperative.

AMD's top executives expressed their pleasure over the Commission's decision.  Tom McCoy, executive vice president for legal affairs at AMD, stated, "Intel must now answer to the Federal Trade Commission, which is the appropriate way to determine the impact of Intel practices on U.S. consumers and technology businesses.  In every country around the world where Intel’s business practices have been investigated, including the decision by South Korea this week, antitrust regulators have taken action."

The largest U.S. antitrust investigation since the Microsoft one of the 90s came the same week as more good news for AMD; Korean officials slammed Intel with a $25 million fine for violating its fair trade laws.  The Korean officials discovered that Intel illegally paid Samsung Electronics and the Trigem Company $37 million in payments between 2002 and 2005 to not buy AMD processors.  The European Union's European Commission (EC), which charged Intel with "the aim of excluding its main rival from the market" is expected to expand its charges this year.

Intel currently owns somewhere between 80 to 90 percent of the worldwide microprocessor market.  Many U.S. citizens do not realize that U.S. laws do allow monopolies, unlike elsewhere, but forbid companies with a monopoly from using its dominance to restrict competition.

With mounting evidence worldwide, Intel faces a tough case before the FTC.  However, it will likely do what it takes, or perhaps more aptly write the lobbyist checks needed to prevent it from becoming the next Microsoft.  Meanwhile, AMD will also likely step up its efforts in hopes that it can stop its downhill slide by a court victory over Intel.

 

http://www.dailytech.com/Just+What+It+Was+Dreading++Intel+Monopoly+Rocked+By+Official+FTC+Investigation/article12011.htm

<!-- google_ad_section_end -->

by LOCOENG, Monday, 09 June 2008 02:01 Comments(0), Read all
News
Huge Hole in Open Source Software Found, Leaves Millions Vulnerable

Huge Hole in Open Source Software Found, Leaves Millions Vulnerable

Jason Mick (Blog) - May 23, 2008 11:01 AM

It is incredible just how big the effects of the newly discovered error in open source key generation is

For all the criticism of Microsoft and its security flaws, the software giant has made an impressive turnaround.  While Vista has been derided for a variety of reasons, most would agree that it’s much more secure than Windows XP.  Recently, a hacker conference showed just how vulnerable systems running Mac OS X are, due to their slow rate of patches.  The Mac machine was hijacked within 10 minutes, while the Linux and Windows boxes survived the day.

Now an even worse security flaw has been found in some of the basic code used by a wide variety of Linux security programs.  The error originated back in May 2006 when workers on the open-source security project committed a grave and unrealized error. 

A simple programming error reduced the entropy in the generated program keys created by the OpenSSL library.  Why does this matter?  The OpenSSL library's key generation and other routines are used by the SSH remote access program, the IPsec Virtual Private Network (VPN), the Apache Web server, secure email clients, programs that offer secure internet portals and more.

Just two lines of code created crippling security holes in four different open source operating systems, 25 application programs, and millions of internet-attached computer systems.  The vulnerability was publicly discovered for the first time May 13, after having left the door open nearly two years.  A patch has been distributed, but that can do nothing to repair the damage that has occurred to compromise systems.  Worse yet, it appears that through the installation of compromised keys on other systems, numerous systems not even running the code have likely been compromised.

To understand the error fully, a basic discussion on cryptography is essential.  On a network anyone can peek at traffic, which is bad news for anyone sharing personal information.  However, by using keys, information can be encrypted and then decrypted on the other side by a friendly computer with the proper key.  As a "secure key" is typically 128 bits, which is 2128 or about 3.4*1038, the possibility of breaking the key by merely by a brute force attack is out of the realm of modern computing power.  A brute force attack simply involves guessing every single number, but to try to do this on a number of this size would take many years.

However, the system falls apart if the computer can only make a small set of keys, despite the large key size.  To a normal user the key looks fine, it’s the right size, and the data is being encrypted as it’s sent out.  However, to the malicious user they can now use brute force attacks to guess the key and monitor your activity, opening the door to surveillance and exploitation.  This is exactly what has resulted based on the newly discovered error.

The error reduced the number of keys that Linux can generate from 2128 to approximately 215.  The error was not caught until now because the keys were still 128 bits and to the human eye looked random.  If the system had consistently produced one key, this problem would have been caught, but instead it produced a variety of keys, but a much smaller variety.  The number of keys the system can generate varies with processor architecture, the size of the key, and the type of the key, but all keys using the flawed code will be greatly reduced in their number of possibilities.

Now that the floodgates are opened, a hacker HD Moore of the Metasploit project has released "toys" to help malicious users crack the poor defenseless Linux and Ubuntu boxes.  Moore's website provides lists of precalculated keys based on the bug, to allow malicious users to easily identify vulnerable systems.

Fixing the key problem is not as simple as fixing a buffer overflow vulnerability, another typical security flaw.  As the keys generated our actual files, merely patching the system will not change these files.  Every single key will need to be replaced in a difficult and time consuming process.  Further keys need to be certified and distributed, which takes more time and is error prone.

Debian, the Linux variant used largely by security professionals, and Ubuntu, the variant most commonly used by home users are both affected.  Furthermore, Windows servers may be compromised as well if they are using keys generated on Linux systems. 

Ironically the bug originated from an automated tool known as Valgrind which is supposed to reduce programming bugs which lead to security vulnerabilities.  It found that a block memory was not being properly initialized, meaning that it would contain random information.  The automated tool politely inserted code to clean up the block of memory making it all zeros.  The only problem was that the system was intentionally using the block's unknown to get randomness to generate the keys.  The library also gets randomness from mouse movements, keystroke timings, network packet arrival timings, and even microvariations in hard drive speed.

The Valgrind code caused errors, so the programmers simply commented out all the code, including the other methods of generating randomness on accident.  Only the code which utilized the process ID, an integer ranging from 0 to 32,767, remained to provide randomness.  It turns out the "fix" turned grievous error was not the work of the OpenSSL programmers themselves, but of the Debian team, known for their security expertise. 

OpenSSL developer Ben Laurie raged, "Never fix a bug you don't understand!  Had Debian [sent the bug to us] in this case, we (the OpenSSL Team) would have fallen about laughing, and once we had got our breath back, told them what a terrible idea this was. But no, it seems that every vendor wants to 'add value' by getting in between the user of the software and its author."

One developer more alarmingly points out that the vulnerability has showed a perhaps fatal flaw in the state of the open source industry and in the computer security in general.  One programmer can make a major change which can be blindly accepted by other developers with little understanding of the implications.  This reckons back to controversial statements made by Steve Gibson, a highly respected security consultant, when a major bug was found in Windows.  Gibson suggested that rather than dumb error, it was an intentional attempt to create an open back door.  While hopefully the Linux vulnerability was not maliciously created, the possibility of such a development remains.

Like Alice in Wonderland, it is often amazing to see just far down the rabbit hole goes in terms of the breadth of these kinds of problems.  And this problem is clearly illustrative that unless a more comprehensive methodology of security development is adopted, these problems will only persist and multiply with time.

http://www.dailytech.com/Huge+Hole+in+Open+Source+Software+Found+Leaves+Millions+Vulnerable/article11869.htm

by LOCOENG, Sunday, 25 May 2008 00:22 Comments(1), Read all
News
Gaping holes in Trillian IM client

May 22nd, 2008 <!-- by Ryan Naraine -->

Gaping holes in Trillian IM client

Posted by Ryan Naraine @ 1:40 pm

Gaping holes in Trillian

 

Trillian users beware:  There are multiple serious security holes in the popular cross-platform IM application.

According to alerts issued by TippingPoint’s Zero Day Initiative (ZDI), the vulnerabilities allow remote attackers to execute arbitrary code on vulnerable installations of Trillian Pro.

Trillian users are strongly encouraged to download and apply Trillian v3.1.10.0, which fixes the underlying vulnerabilities.

Vulnerability # 1:  The specific flaw exists within XML parsing in talk.dll. When processing certain malformed attributes within an ‘IMG’ tags, it is possible to overwrite past an allocated heap chunk which can eventually lead to code execution under the context of the currently user. Authentication is not required to exploit this vulnerability.

Vulnerability #2: The specific flaw exists within the header parsing code for the MSN protocol. When processing the X-MMS-IM-FORMAT header, certain attributes are copied into a buffer located on the stack without any length verification which can eventually lead to code execution with the privileges of the user that is running the application. Authentication is not required to exploit this vulnerability.

Vulnerability #3: The specific flaws exists during the parsing of messages with overly long attribute values within the FONT tag. The value for any attribute is copied into a stack based buffer via sprintf() which can result in a buffer overrun and can be subsequently leveraged to execute arbitrary code under the privileges of the logged in user. Exploitation may occur over the AIM network or via direct connections. User interaction is required to exploit this vulnerability in that the target must open a malicious image file.

The patches can be found via Trillian’s Help > Check for Updates feature.

http://blogs.zdnet.com/security/?p=1168

by LOCOENG, Friday, 23 May 2008 09:25 Comments(0), Read all
News
iCal vulnerabilities put Mac OS X users at risk

 May 21st, 2008 <!-- by Ryan Naraine -->

iCal vulnerabilities put Mac OS X users at risk

Posted by Ryan Naraine @ 9:53 am

 

iCal vulnerable to remote code execution flaws

 

 

Heads up to Mac OS X users:  It appears Apple will be shipping high-priority security patches sometime today. (See important update at the end)

According to a security alert from vulnerability research and pen testing firm Core Security, Apple is about to release patches for three remotely exploitable security vulnerabilities in iCal, the personal calendar application that ships on Mac OS X.

The Core advisory was coordinated with Apple’s security team so it’s a safe bet we will see a big software update later today with patches for multiple vulnerabilities.

From Core’s alert (not yet available online):

The vulnerabilities are caused due to iCal not properly sanitizing certain fields on iCal calendar files (.ics). This can be possibly exploited to crash iCal (first two bugs) or possibly execute arbitrary code (third bug) via malicious calendar updates or by importing a specially crafted calendar file.

Vulnerable packages include iCal version 3.0.1 on MacOS X 10.5.1 (Leopard).

Core said the flaws could enable client-side attacks on Mac users, using rigged Web sites or malicious attachments.

In all three cases detailed in the advisory, an improper sanitization affects the parsing of the calendar file format for sharing calendar events. This means that a malicious iCalendar file may be sent via e-mail or posted in a Web service to trigger the vulnerabilities when the victim application opens or updates the file on his/her computer.

This can be possibly exploited to crash iCal (first two bugs) or possibly execute arbitrary code (third bug) via malicious calendar updates or by importing a specially crafted calendar file.

Apple’s iCal users are strongly urged to look out for — and install — the patches using the Software Update mechanism built into Mac OS X.

UPDATE:  I’m told that Apple’s patch has slipped and will not be released today.   In the circumstances,  beware of strange links and e-mails with requests to add/open calendar (.ics) files.

http://blogs.zdnet.com/security/?p=1160

by LOCOENG, Friday, 23 May 2008 09:20 Comments(0), Read all
News
Google Sites opens up to everyone

May 22nd, 2008 <!-- by Garett Rogers -->

Google Sites opens up to everyone

Posted by Garett Rogers @ 11:02 am

I guess it was technically available to everyone already, but you needed to have a Google Apps account to use it. Now, as of today, anyone can simply create a “site” on the relatively new Google service.

A few months ago we launched Google Sites exclusively as part of Google Apps for companies and organizations that wanted to use the service on their own domains. Now we’ve made it easy for anyone to set up a website to share all types of information — team projects, company intranet’s, community groups, classrooms, clubs, family updates, you name it — in one place, for a few people, a group or the world. You can securely host your own website at http://sites.google.com/[your-website] and add as many pages as you like for free. — Official Google Blog

Now that this service publicly available, you may wonder what the difference between Google Sites and Google Pages is. Well, you can technically use both to create a public website, but Google Sites is geared more towards collaborative, private web portals than a traditional website.

sites_infographic.jpg
[image from Google]

The reason Google Pages is better suited for external websites (like for instance a personal webpage) is because it can be hooked up to your own domain, and overall, you have better control over its appearance.

Google Sites, on the other hand, gives you much more power as far as collaboration goes, but you have to use a special website address, and many things like the search bar at the top of every page are not optional. A “Google Site” can be thought of as more of a wiki where people you give access have the ability to easily update the content.

[Thanks Josh]

Garett Rogers is employed as a programmer for iQmetrix, which specializes in retail management software for the cellular and electronics industry. See his full profile and disclosure of his industry affiliations.

http://blogs.zdnet.com/Google/?p=1051

by LOCOENG, Friday, 23 May 2008 09:17 Comments(0), Read all
News
Save ink and paper with the Nuke Anything Firefox add-in

May 22, 2008 8:22 PM PDT

Save ink and paper with the Nuke Anything Firefox add-in

Posted by Michael Horowitz

I'm very stingy about installing Firefox extensions but one that made my short list is called Nuke Anything. Simply put, it lets you right click on something in a web page and remove it. I use it almost every time I print a web page to save on both ink and paper. Even web pages that aren't printer-friendly (and there are all too many of them) can be sculpted, if you will, reduce their paper and ink requirements.

Nuke Anything can remove both text and images. To remove text, first select it, then right click and chose the "Remove selection" option. To remove an image, as shown below, simply right click on it and select "Remove this object".


One small annoyance used to be that when you right clicked without first making a selection, you never knew exactly what was being removed. This was never fatal, there always was an "Undo last Remove" option (see above). A recent upgrade to the add-on introduced a brief blinking red outline around the section/object about to be removed. You can see this red border in the screen shot above.

Despite the name, Nuke Anything can not remove everything. Right clicking on a Flash movie for example, produces the Flash right click menu rather than that for Nuke Anything. Still, I find it invaluable. Perhaps you will too.

http://news.cnet.com/8301-13554_3-9951031-33.html?tag=blogFeed

by LOCOENG, Friday, 23 May 2008 09:06 Comments(0), Read all
News
Microsoft's Grand Plan: Pay People to Use its Search Engine

Microsoft's Grand Plan: Pay People to Use its Search Engine

By Betsy Schiffman EmailMay 21, 2008 | 9:32:52 PM 

Cashback Microsoft unveiled its big plan for online search, and it reeks of desperation.

The company is rolling out a cashback search service, which lets users get rebates for purchases they make through Live.com. The payments will be based on a percentage of the product's price, and will be paid via check, direct deposit or PayPal.

Microsoft has been gunning hard for a piece of the search business, but its attempt to develop brand loyalty through bribery seems a little embarrassing when its former takeover target (Yahoo) and the far-and-away search leader (Google) don't find it necessary to tip their users.

Theoretically, the program would serve two functions for Microsoft: 1) It could help build traffic; and 2) It could help Microsoft forge financial relationships with its users, since they will provide billing details and some personal information in order to receive payments from Microsoft.

But it sure seems like an admission by Microsoft that it has given up on trying to win customers' hearts and minds and is unabashedly appealing to customers' wallets.

The model is also reminiscent of a spectacular disaster from the last bubble -- a web "portal" called iWon, which gave away $10,000 everyday and $1 million every month, in hopes of building a customer base. The site was revamped and relaunched last year by IAC as some sort of games site with prizes and giveaways.

While the plan sounds pretty cockeyed to us (do Microsoft execs really think they can steal customers from Google by buying them off for a few bucks?) the program is clearly something Microsoft sees as "disruptive."

"On Wednesday, we will be announcing a major new initiative that our search teams have been driving. We are getting better and better with our core algorithmic search, and at the same time, we are investing to differentiate in vertical experiences and to disrupt the current model," said Kevin Johnson, in an internal memo, published earlier this week.

After testing out the Live Search Cashback program this morning, we're not any more convinced of its potential for success: The selection of retail partners rots, and the user interface is bare bones and pretty lame. (Microsoft says it partnered with "more than 700 merchants," including 13 of the top 40 U.S. retailers.) While the savings are decent (between 15 percent and 25 percent), the list prices seem slightly inflated in the first place.

Plus, there is the attendant ickyness of the whole rebate concept -- why not just give me a discount at the point of sale? Why make us do anything but buy the damn thing to get the discount you are offering?

TOS language like this does nothing to make us feel confident we won't be getting the shaft somehow:

We will describe the Live Search cashback awards available for associated qualifying purchases. Within seven days after a qualifying purchase is reported to us, we will list the purchase in your account with a status of "pending." The purchase will stay in pending status for a period of 60 days to account for returns, refunds, fraud and other processing issues. After this point, if the purchase is eligible for awards, it will be marked as "available" in your account and the associated awards will be eligible for redemption as described below. You must ensure that we properly post awards to your account. If you believe that you have earned awards that are not posted to your account, we will not consider posting them to your account unless you contact us within six months after the date of the associated purchase. We may require reasonable documentation to support your claim.

Live Search cashback awards have no monetary value until the associated purchases are approved and you make a proper redemption request. You may request redemptions from your account, subject to then-current minimum redemption requirements. Redemptions for cash payments are subject to section 8 above. There may be additional limitations for redeeming awards on purchases from certain merchant sites, and those limitations will be disclosed on the merchant site. We may offer additional redemption options. You are responsible for any tax liability from your participation in the service.

Kinda makes you want to pay double just to avoid all of this.

http://blog.wired.com/business/2008/05/microsofts-gran.html

by LOCOENG, Friday, 23 May 2008 09:01 Comments(0), Read all
News
Shocking: Microsoft Office Will Embrace Open Document Formats

Shocking: Microsoft Office Will Embrace Open Document Formats

By luxagraf May 22nd, 2008 

Office2007_2Quick, grab your tin foil hats and prepare to speculate because Microsoft has agreed to support the Open Document Format (ODF) in Microsoft Office. The move represents a huge shift from the company’s hard-fought battle to convince the world that its own OOXML format was superior to ODF.

But Microsoft seems to have had a change of heart and says that Office 2007 Service Pack 2 will support the ODF, the default file format of OpenOffice, Sun’s StarOffice and more. More impressive than just support, the next revision of Office will allow users to set ODF as their default format for new documents.

The company also plans to support other universal formats like PDF 1.5 and PDF/A. Both the ODF formats and PDF are direct competitors to Microsoft’s own OOXML and XPS file formats, currently the primary options in Office 2007.

The upgrade, which rather disappointingly won’t be available until 2009, will let users both open and create files in ODF formats without needing a plug-in or an outside conversion utility.

Perhaps Microsoft has finally recognized that much of Office’s value lies in its user interface, workflow options and tools, and that the existing file format lock-in is increasingly a hindrance to companies that would otherwise prefer Microsoft Office to the alternatives.

In other words, many companies and government offices like Microsoft’s software, but are nervous (or legally prevented) from using proprietary document formats. This announcement means that such customers can have their cake and eat it too, since they will be able to use Microsoft Office, but save files in open formats that anyone can open.

It’s worth noting that OpenOffice 3.0, currently a beta release, will offer similar support for Microsoft’s OOXML format. Together the two announcements could mean cross-platform, application-independent Nirvana for office documents.

Of course many will greet the news with suspicion since it is after all Microsoft — a convicted monopolist. The most likely explanation for opening up to ODF is the $1.4 billion fine the European Commission recently handed down for Microsoft’s alleged failure to give adequate access to its file formats.

Whatever the case, while there’s reasons to be cautious — given Microsoft’s track record — the additional file format support looks like a win for users.

http://www.webmonkey.com/blog/category/software%20tools

by LOCOENG, Friday, 23 May 2008 08:55 Comments(0), Read all
News
What Happened to the Microformats Support in Firefox 3

What Happened to the Microformats Support in Firefox 3

By luxagraf May 22nd, 2008

FirefoxmicroformatsWhen Firefox 3 was still in the early alpha stages, Mozilla said the browser would offer ways to work with microformats data — small chunks of semantic markup for address book info, event listings and more.

However, now that Firefox 3 has reached the release-candidate stage, we’re left wondering: where are the microformats tools? The answer, according the Michael Kaply, developer of the Operator plugin, which offers some microformats tools, is that an API exists in Firefox 3, but there’s no user interface available.

The short story is that even with Firefox 3, you’ll need to install an add-on like Operator to take advantage of microformats data on the web. The reason the user interface is missing is because, as Kaply says, “there was never any agreement as to how to expose (microformats).”

Mozilla and the Firefox developers variously considered a sidebar or a toolbar, but decided that both would take up too much screen real estate.

There is also a secondary problem — how to add new services. Kaply’s Operator plug-in uses raw javascript files to allow users to add new services, but of course that introduces security issues. As Kaply admits, “it works for Operator, but would not be a good method to put into the core browser.”

The good news is that while the UI problem remains, Microsoft has come up with a solution for the services problem. The company’s recently unveiled OpenService, which will be part of Internet Explorer 8, connects to web services using XML. Since the format is licensed under a Creative Commons Attribution-Share Alike License, Kaply is hoping to work with Microsoft to adapt Operator to use the same format.

So while the services issue has largely been addressed, there still is no consensus on how to integrate microformats into the Firefox user interface.

Part of the problem is that microformats are thus far very abstract. While they theoretically allow your browser to associate semantically marked-up data with specific applications — meaning the contact information you see on a website would be associated with your favorite contacts application, events would be associated with your favorite calendar application, locations would be associated with your favorite mapping application and so on — there is no consensus on how to provide those features.

If you’ve got ideas, head over to the Mozilla developer site and join in the discussion. In the meantime, we’ll just have to wait for Firefox 3.1, or perhaps Firefox 4, before microformats become an everyday browsing tool.

 http://www.webmonkey.com/blog/What_Happened_to_the_Microformats_Support_in_Firefox_3

by LOCOENG, Friday, 23 May 2008 08:53 Comments(0), Read all
 


MKPortal C1.2 rc1 ©2003-2008 mkportal.it
Page generated in 0.04144 seconds with 11 queries