Archive for the ‘Uncategorized’ Category

Foursquare passwords sent in clear text!

Thursday, July 15th, 2010

I had a look at Foursquare recently as a few of my colleagues were using it. One of the apps I downloaded was FourSquareX .

I was really surprised by a message on the logon screen saying that passwords are sent in clear text:

FourSquareX warning screen showing that password is sent in clear text.

I figured this might just be for the API but decided to investigate whether this is also the case on the main site and it seems it is. Running LiveHTTPHeaders you can see the following when you log on to foursquare.com (I’ve put some asterisks in to remove user identifiable stuff):


F***231419577AFW=true&F*****1419575D1V=********%40gmail.com&password=4square

(this is the same on the ‘/mobile/’ site)

And when you change your account password (in this example to ‘nothidden’):

-----------------------------*****591617307847261632891267
Content-Disposition: form-data; name="****2314598660HU"
nothidden
-----------------------------*****591617307847261632891267
Content-Disposition: form-data; name="****231459867BB4"
nothidden

I’m really surprised at this as it means a packet sniffer could easily pick out your password. It also suggests a relaxed attitude towards sending and maybe even storing users data. I wouldn’t be surprised if the smartphone apps (such as the Android one) also send password details in clear text although I haven’t tested this hypothesis.

So, if I keep using it I will definitely use a unique password for Foursquare.com and not store any sensitive data in your account. Like my erm.. email, date of birth, where you’ve been for the past few days for example…

Posted in Android, FourSquare, GPS, Gaming, Security, Uncategorized, iPhone | No Comments »

Swype built in on Droid X

Thursday, July 8th, 2010

Good to hear that Swype will be included on the Droid X from Motorola. I reported on Swype and the Shark technology to which it bears a striking resemblance a while back. Having used it on a Nexus One I can say that the latest version makes entering text a lot faster than lots of tapping on the screen.

Link to engadget article about Droid X with Swype here.

I also found this comment by one of the creators of Swype that says that the Swype technology was actually patented before the Shark technology from IBM was created and the two were developed separately in parallel.

Tags: ,
Posted in Input, Uncategorized | No Comments »

Android and Spotify

Wednesday, January 6th, 2010

Android Guys and others have talked about the possibility of Spotify being included on the Nexus One.

Although I’m a last.fm man myself currently it would be interesting to see how close the integration runs with the device. Comments on the Android Guys page suggest that it isn’t part of the initial ROM so it seems maybe it will be available from the market place later.

Given that Spotify is currently a European phenomenon I would imagine there are a few more steps before this would be available to US carrier devices.

Posted in Uncategorized | No Comments »

Back in action

Wednesday, January 6th, 2010

Noticing a pickup in hits on the site and with the launch of Google’s own phone I’ve decided to get things up and running again.

Watch this space…

Posted in Uncategorized | No Comments »

Fair game?

Thursday, October 2nd, 2008

There have been a few interesting articles recently (including this on in the Guardian) about how Android could affect the gaming market. I really hope that Android opens the gates for some talented game developers who don’t have access to bags of cash but who can market through the Android Marketplace. It would be nice to see a return to an environment where you don’t need several million pounds and a load of graphics experts to launch a successful game.

However, Handango have also been mentioned in reference to Android so it sounds highly likely that the Android Marketplace won’t be the only point from which people can access software. I’m personally not a huge fan of the ‘grim’ Handango’s way of dealing with developers or customers. So I hope Google treats people with more respect.

A more worrying trend in mobile gaming is in multiplayer games using GPS. From what I can understand of this phenomena, this could lead to it becoming a normal day to day experience to see geek types spontaneously jumping on each other and battering the cr&p out of each other with their mobile phones. Whilst i’m sure Darwin would approve, I’m not sure what the police will make of people on tube platforms taking sniper shots at each other with their G1′s.

I’m sure the tabloids would also have a field day with titles such as Slashwars [cached link here] where random punters are meant to attack each other by swiping their phones in the air (presumable simulating knives). I guess if they keep their cameras switched on then this could create a whole new genre of ‘happy-slapping’.

Tags: , , , , , , ,
Posted in Gaming, Market, SDK, UK, Uncategorized, Windows Mobile | No Comments »

Tear up your phone contract (maybe… one day)

Tuesday, September 30th, 2008

An interesting patent lodged by Google has been mentioned by New Scientist and Engadget amongst others. It would allow for a consumer to decide which network (cellular, wifi or other) they want to use in a particular location and time based on price and other factors.

This could make picking your voice and data tarriff more like choosing which drink you prefer with your lunch. I think this would make nice change from signing your life away (well… 18 months of it) to an operator.

Google do file plenty of patents so this isn’t necessarily going to get the carriers quaking in their boots just yet. However, it does look interesting and makes a lot of sense if the technology will allow for it.

Tags: , ,
Posted in Uncategorized | No Comments »

Win a G1 smartphone with AndroidCommunity.com

Tuesday, September 23rd, 2008

As the title says :-) . No idea if it will work outside the U.S. but you could still try your luck! See the link here.

Posted in Dream, Fun, T-Mobile, Uncategorized | No Comments »

Apple’s App Store ‘dictatorship’

Wednesday, September 17th, 2008

Great article here about how Apple has approached applications that are competitive or ‘too silly’. If this proves to be the thin end of the wedge then this approach could prove too dictatorial for even the biggest iPhone fanboy. The fact that even Microsoft’s ‘Mr. Mobile’ – Jason Langridge is pointing to this as a step too far is a worrying sign. At least Microsoft treats its app developers ‘fairly’ by producing a similar product, including it for free and then using its weight to market the hell out of it – thus crushing the competition slowly..

This is an area where Google hopes that Android’s ‘openness’ will shine. The idea being that the Google marketplace will be a democracy rather than the App Store’s dictatorship. It could be argued that this will lead to a lower quality threshold but hopefully the voting system on the market place will help wade through some of the rubbish. I would forsee that users could also access applications via other sites and will not be restricted to just the Google market site.

Tags: , , , , , , , ,
Posted in Market, SDK, Uncategorized, Windows Mobile, iPhone | No Comments »

Security team appeal for experts to focus on Android

Tuesday, September 2nd, 2008

Google Android’s security team have asked security experts to ‘ethically hack’ their platform and report back privately on what they find. I think this is a smart approach but how they’ll get much of what they find resolved in time for the upcoming HTC Dream release will be interesting.

I think that it will be interesting to compare security on the different platforms given the the ‘openness’ of Android relative to closed platforms such as the iPhone, Blackberry, Windows Mobile and Symbian. Although the iPhone is a closed platform it is generally not considered secure enough for most enterprises to embrace it yet. This is perhaps reinforced by the simplicity of the latest password hack for the iPhone.

Blackberry is generally considered secure (if you enforce the appropriate policies) with the occasional hiccup(!). Windows Mobile is becoming more security conscious with each release and at least has the concept of signing applications as does Symbian.

Tags: , , , , , , , , , , , ,
Posted in Blackberry, RIM, Security, Symbian, Uncategorized, Windows Mobile, iPhone | No Comments »

On holiday this week

Friday, August 29th, 2008

Sorry for the lack of posts. Normal service will resume next week.

Posted in Uncategorized | No Comments »