ohryan.ca

A Web Developer in Winnipeg

  • Peach Came From a Can

    Peach Came From a Can

    in ,

    Social app Peach hit the interwebs over the weekend, harder than a late 1990s grunge-esque anthem skipping on a discman playing through a cassette tape adapter.

    You could write off peach as another social networking app for tech groupies. But you’d be missing a very unique feature.

    Chatbots.

    (Sorta. They’re almost more like command-line keywords.)

    Peach does this one little thing that I’ve never seen an app of this type do before. A series of text commands enable quick access device sensors and various other APIs. For example, `move` posts the number of footsteps the device has recorded today, `gif: keyword` returns a gif search, `here` posts your location, etc.

    I’m not sure whether to call this innovative per se, chatbots have existed on IRC for decades and Slack does something similar with third party app integrations.

    However, Peach is the first time I’ve seen this sort of thing implemented for purely entertainment purposes and I find it extremely interesting. Mostly likely, an early sign of things to come.

    If you do check it out, add me, I’m ohryan.

  • TeeVee for WP: building Apple TV apps with WordPress Plugins

    TeeVee for WP: building Apple TV apps with WordPress Plugins

    in , ,

    Imagine you create tonnes of great video content every day and publish it all through WordPress. Your viewer can watch your amazing shows everywhere…on iPhones, iPads, iMacs, but not their TVs. Wouldn’t it be great to have a branded Apple TV app so that all your viewers could watch your content in full screen glory? Well I’ve got just the WordPress plugin for you…

    Behold, TeeVee for WP!

    A straightforward WordPress plugin I created to allow content creators to use WordPress as a data source Apple TV apps. TeeVee for WP attaches video metadata to blog posts. The metadata is used to to generate TVML ((TVML is this cool little XML apple created for basic layout – check out Apple’s documentation for more information.)) which gets ingested by a custom/branded TvOS app.

    Screenshot 2015-12-06 21.01.03


    On the xCode end you simply create a new TvOS single-view application, with an AppDelegate that looks something like this:

    Modify the `TVDomain` to point the domain where TeeVee for WP is install and the rest is show business.

    The project is up on github here: https://github.com/ohryan/teevee.

    Contributions would be much appreciated.

    If you have any questions or suggestions hit me up on twitter at @ohryan or email me [email protected].

  • Facebook’s History of Spying

    Facebook’s History of Spying

    in

    Reading Wikipedia this morning, I came across an interesting tidbit from the days when facebook was still thefacebook.com. As seen in The Social Network, after launching the site Mark Zuckerberg was under investigation for potentially stealing the idea from the Winklevoss brothers.

    Not covered in the movie though, while this investigation was going on Zuckerberg did a little investigating of his own, by accessing the email accounts of the investigators:

    Zuckerberg knew about the investigation so he used TheFacebook.com to find members in the site who identified themselves as members of the Crimson. He examined a history of failed logins to see if any of the Crimson members have ever entered an incorrect password into TheFacebook.com. In the cases in which they had failed to login, Mark tried to use them to access the Crimson members’ Harvard email accounts, and he was successful in accessing two of them. In the end, three Crimson members filed a lawsuit against Zuckerberg which was later settled.

    ~ The History of Facebook, Wikipedia

    The way I read this, thefacebook.com was logging failed passwords! Meaning, when you entered an incorrect password on thefacebook.com’s login page, the website would save the text you entered. Obviously websites have to have a record of your password in order to authenticate you. Passwords are normally encrypted in such a way that developers cannot access the password. The wikipedia article doesn’t say whether or not regular passwords were encrypted.

    However, if you were intending to use a website you created to log into email accounts of the site’s users, collecting  passwords that failed would give you more passwords to try when logging in to those user’s third party email accounts.

    Zuckerberg was caught breaking in to 2 accounts, but one has to wonder how many other accounts he broke in to. Remember, in 2004 (prior to gmail), email accounts did not have 2-factor authentication, they did not detect suspicious login activity, they did not have the security features we’ve come to take for granted. Anybody could log into any body else’s email accounts undetected.

    Password security is the most basic of implicit trust between a website and its users. A site that is logging passwords and password attempts cannot be trusted, period.

    Who knows if or how the culture at Facebook has changed. Nevertheless, if the company’s CEO was willing to exploit users for personal gain in the early days, what sort of things are they willing to do when governments or other powerful entities pressure them?