Why would you want to do that?



  • http://seattlewireless.net/~casey/?p=13

     

     

    mod: fixed your link  - dh



  •  Well, someone at Kodak is going to get fired when thousands of customers call in complaining that their new picture frames were preloaded with goatse/tubgirl/etc. Lawsuit for emotional duress?


  • Discourse touched me in a no-no place

    @Bumble Bee Tuna said:

    Well, someone at Kodak is going to get fired when thousands of customers call in complaining that their new picture frames were preloaded with goatse/tubgirl/etc Lawsuit for emotional duress?
    Are you sure? It appears to me to be a read only RSS feed (is there any other type?) of what a particular photo frame has on it/is displaying - I can't see how it could be used to push photos to a photo frame.



    Now lawsuits for not telling their customers their private porn collection on their picture frame is publicly available on the other hand.... (assuming of course this defaults to public access, and it's not something you have to actively, um, activate.)



  • Hahaha, awesome. I don't think too many frames will have the Mac address 00:00:00:00:00:00, will they.



  •  If you access the feed of an unactivated frame, you get to activate it and then set the contents to whatever you want (as you're now wrongly considered the owner of it.

     Also, there's a URL you can go to with a parameter (reset=1) you can use to deactivate a frame, which means you can deactivate anyone's frame and then reactivate it with your own pictures. (According to post I read on Slashdot).

     This frame is 100% pwned and by the end of the week every frame they've manufactured will probably already be set to goatse by hackers having fun with it.



  • Oh the irony... Try literally the next MAC adress, and you're already in NSFW-land...

    Unrelated, how long to you think until people realize that deliberately advertizing their blog as "Yet another..."/"Just a boring blog"/"I'm soo uncool" is only (remotely) witty if not everyone and their pet rock is doing it?



  • @Bumble Bee Tuna said:

     If you access the feed of an unactivated frame, you get to activate it and then set the contents to whatever you want (as you're now wrongly considered the owner of it.

     Also, there's a URL you can go to with a parameter (reset=1) you can use to deactivate a frame, which means you can deactivate anyone's frame and then reactivate it with your own pictures. (According to post I read on Slashdot).

     This frame is 100% pwned and by the end of the week every frame they've manufactured will probably already be set to goatse by hackers having fun with it.

    If this actually works, you have restored my faith in a just and loving god.



  • @morbiuswilters said:

    @Bumble Bee Tuna said:

    .... (According to post I read on Slashdot) ......

    If this actually works, you have restored my faith in a just and loving god.


    I never realised you felt way about slashdot. Perhaps your anger was merely an effort to cloak your love?



  • @OzPeter said:

    @morbiuswilters said:

    @Bumble Bee Tuna said:

    .... (According to post I read on Slashdot) ......

    If this actually works, you have restored my faith in a just and loving god.


    I never realised you felt way about slashdot. Perhaps your anger was merely an effort to cloak your love?

    Slashdot is merely the messenger.  Besides, Slashdot sucks because of the commenters and editorializing, not because of the stories themselves.



  •  Appears to be fixed, or at least crudely covered-up.

     All MAC addresses just show the default images now... although that makes me wonder if the picture frames were all reset to default too?



  • @morbiuswilters said:

    Slashdot sucks because of the commenters and editorializing, not because of the stories themselves.
    Awww, I'm sorry.  Do the big mean moderators keep modding you -1, Troll?



  • @blakeyrat said:

    although that makes me wonder if the picture frames were all reset to default too?

    Well the data is still there in the account (at least the one for 00:00:00:00:00:00). Not sure if it would display in the frame.



  • @merreborn said:

    @morbiuswilters said:

    Slashdot sucks because of the commenters and editorializing, not because of the stories themselves.
    Awww, I'm sorry.  Do the big mean moderators keep modding you -1, Troll?

    I don't think I've bothered posting to Slashdot for a couple of years.  I stopped reading the front page over a year ago, since most of the stories were basically "OMG (Microsoft|RIAA|Bush) is going to eat your babies!"  I don't know if I ever got badly down-moderated, but reading the comments was like swimming in a sea of piss.  It doesn't help that the majority of Slashdot commenters are like the intersection of SpectateSwamp and Indrora.



  • Even the zeroed MAC address is returning the defaults.  If I were
    to fathom a guess as to their solution (or at least how I would solve
    the "issue"), I would imagine that there is now a check on the
    presented user-agent to determine whether or not to provide the real
    feed.  Alternately, the feed could depend on the IP address making the request (though that would have issues for dynamic IPs or taking the frame to a new location).

    If they reset every MAC-specific feed, that would be TRWTF.



  • UserAgent seems the most likely, but would they be able to get that up and running so quickly? (I mean, competant programmers could no problem, but these guys...)

    If that's the case, we just need someone to find out the userAgent for these frames.



  • @blakeyrat said:

    UserAgent seems the most likely, but
    would they be able to get that up and running so quickly? (I mean,
    competant programmers could no problem, but these guys...)

    If that's the case, we just need someone to find out the userAgent for these frames.

    Quick and dirty implementation via PHP would be an if statement and a pair of braces.  Extra points for creating a "default" feed.

    This is actually the recommended method that was given for creating in-game web pages for EVE Online (prior to the most recent expansion).  The browser was very simplistic and this allowed for the page to be rendered differently in-game (usually with in-game functionality) than in a regular browser.

    As for finding the userAgent...  Get frame, use WireShark to listen to port 80.  Or if the frame lets you specify the URL, point it to a local webserver and read the logs.



  • How many posts do you think you're going to find under the "seattle wireless security privacy kodak" tag?



  • @fennec said:

    How many posts do you think you're going to find under the "seattle wireless security privacy kodak" tag?

    Depends on how often my "apply 5 random, existing tags to every post" GreaseMonkey script will pick it.



  • Forgive me for assuming the forum software would be smart enough to split a field named "Tags" (note the plural) at whitespace.


  • Discourse touched me in a no-no place

    @holli said:

    Forgive me for assuming the forum software would be smart enough to split a field named "Tags" (note the plural) at whitespace.
    How do you expect it to cope with multi-word tags?



  • @holli said:

    Forgive me for assuming the forum software would be smart enough to split a field named "Tags" (note the plural) at whitespace.

    Do not worry, nobody here uses tags as intended anyway.



  • @PJH said:

    How do you expect it to cope with multi-word tags?
    Usually_by_using_underscores.



  • @ender said:

    @PJH said:
    How do you expect it to cope with multi-word tags?
    Usually_by_using_underscores.
     

    Ok, not to defend Community Server in any way, shape, or form... but underscores? WTF other tag-using applications have you used in the past?

    It's the one thing CS does the same as other sites on the Internet. The ONE THING.



  • @PJH said:

    @holli said:
    Forgive me for assuming the forum software would be smart enough to split a field named "Tags" (note the plural) at whitespace.
    How do you expect it to cope with multi-word tags?
    Forgive him for assuming the forum software would be smart enough to determine which words are actually part of a multi-word tag and which are independent tags of their own.



  • @morbiuswilters said:

    It doesn't help that the majority of Slashdot commenters are like the intersection of SpectateSwamp and Indrora.

    After a lenghty absense,  SpectateSwamp returns:

    What-killed-the-digital-video-user



  • @blakeyrat said:

    @ender said:

    @PJH said:
    How do you expect it to cope with multi-word tags?
    Usually_by_using_underscores.
     

    Ok, not to defend Community Server in any way, shape, or form... but underscores? WTF other tag-using applications have you used in the past?

    It's the one thing CS does the same as other sites on the Internet. The ONE THING.

    But bloody hell, you don't half have to fight the javascript sometimes to stop it choosing how it wants to complete your sentences for you...



  • My favorite is how it massacres the functionality of the delete key. Most applications have a simple 1:1 relationship between presses of the delete key and characters delete, but that's far too simple for CS! Here, you hit delete 3 times, and you might get anywhere from 3 to 6 characters deleted-- seemingly at random. Innovation!



  • I'm sure this question has been asked before, but could the issue be with the version of TinyMCE that CS is using?



  • @blakeyrat said:

    @ender said:
    @PJH said:
    How do you expect it to cope with multi-word tags?
    Usually_by_using_underscores.

    Ok, not to defend Community Server in any way, shape, or form... but underscores? WTF other tag-using applications have you used in the past?

    It's the one thing CS does the same as other sites on the Internet. The ONE THING.

    I've recently encountered such a blog app, and it's TRWTF - it separates tags on spaces, commas, and possibly semicolons.&nbps; It may separate them on other characters.

    I have a difficult time comprehending what the developers could've possibly been thinking, considering that the name of this product has a space in it, as well as the name of their company.  Edit: Oh, and also the name of the group that has deployed this product has spaces in it.



  • @smbarbour said:

    I'm sure this question has been asked before, but could the issue be with the version of TinyMCE that CS is using?

    That's basically the problem, although it also seems CS manages to make the 3 year old version of TinyMCE suck more than it has to.



  • @blakeyrat said:

    My favorite is how it massacres the functionality of the delete key. Most applications have a simple 1:1 relationship between presses of the delete key and characters delete, but that's far too simple for CS! Here, you hit delete 3 times, and you might get anywhere from 3 to 6 characters deleted-- seemingly at random. Innovation!

    Hmm, I don't get it that bad at all.  The only time it plays up for me is when I backspace across a word boundary to correct a typo in the previous word after I've already moved on to the next, and then try to carry on typing; when I come to re-type the space after the corrected word, some kind of misbegotten auto-trim-trailing-whitespace algorithm appears to kick in and keep deleting it out from under me().  Within a word, backspace seems to work just fine. 

     () - At least, I think that's what's happening; when you're typing quickly, it's hard to know quite exactly which keys you pressed in exactly which order a moment later when you're trying to reconstruct "Now what exactly did I do to make it do that?" in your memory.




  • I never saw it until a day or so ago when I hit delete and wondered if I'd hit it 3 times. And then I realised I'd finally seen it.



  • @Nyquist said:

    I never saw it until a day or so ago when I hit delete and wondered if I'd hit it 3 times. And then I realised I'd finally seen it.

    Congratulations, you are now a fully fledged member of the TDWTF community!



  • @blakeyrat said:

    My favorite is how it massacres the functionality of the delete key. Most applications have a simple 1:1 relationship between presses of the delete key and characters delete, but that's far too simple for CS! Here, you hit delete 3 times, and you might get anywhere from 3 to 6 characters deleted-- seemingly at random. Innovation!

    TRWTF is WYSIWYG. I turned off WYSIWYG (I always change the preference to turn off WYSIWYG when I join a forum) and now these problems are not, and I don't have this problem. But there is still a lot of other problam with Community Server forum, still.



  • @zzo38 said:

    TRWTF is WYSIWYG. I turned off WYSIWYG (I always change the preference to turn off WYSIWYG when I join a forum) and now these problems are not, and I don't have this problem.

    True, but in CS this adds the problem that you have to manually insert HTML linebreaks.

    AND that you can see the crap HTML TinyMCE creates whenever you quote someone.

    This, and sometimes you believe to get an idea why this delete-two-characters-when-hit-backspace-once problem might be there.


Log in to reply
 

Looks like your connection to What the Daily WTF? was lost, please wait while we try to reconnect.