Category: tidbit
12/13/07 11:16 - 36ºF - ID#42509
in swedish
- Z
Permalink: in_swedish.html
Words: 15
Location: Buffalo, NY
Category: politics
11/30/07 09:38 - 30ºF - ID#42339
'gay bowel syndrome?'
- Z
Permalink: _gay_bowel_syndrome_.html
Words: 39
Location: Buffalo, NY
Category: a series of tubes
11/27/07 09:12 - 30ºF - ID#42309
are you man enough for this
That is unusual talent.
- Z
Permalink: are_you_man_enough_for_this.html
Words: 91
Location: Buffalo, NY
Category: a series of tubes
11/08/07 08:22 - 40ºF - ID#42051
"in hell, this is all you get"
I think the term "ROFL" is used too often and never literally, but I came very close. Don't worry; there is a happy ending.
- Z
Permalink: _quot_in_hell_this_is_all_you_get_quot_.html
Words: 67
Location: Buffalo, NY
11/01/07 01:12 - 52ºF - ID#41919
a couple of you may find this funny
From: molly miller
To: webmaster
Subject: Dance
Date: Thu, 1 Nov 2007 08:52:52 -0700
Are you really doing the hokey pokey tonight?
- Z
Permalink: a_couple_of_you_may_find_this_funny.html
Words: 23
Location: Buffalo, NY
10/27/07 03:04 - 57ºF - ID#41836
i got some splainin to do
The QCRG All-Stars* played against the Steel Town [Hamilton, ON] Tank Girls this past summer in a game where the officiating was bad and the sportsmanship was worse. Derby is a rough sport, but this rapidly became unsettling on an almost visceral level. Anyway, the costume is a Tank Girls' uniform.
That does not explain the potato masher. There is a Tank Girl whose name is Cheese Grater. She carries around a cheese grater. I'm not sure whether the name or the kitchen implement came first, but I'm pretty sure I don't want to ask. It's pretty random, but it's not any less random than, say, a potato masher. And I guess cheese is relatively badass as far as dairy products go, but consider this: if someone chucked a piece of cheese at you, you'd be angry but mostly confused. But if someone chucked a potato at you, you'd be IN PAIN!!!!!
- Z
_______________
- ie, anyone who wasn't busy that weekend
Permalink: i_got_some_splainin_to_do.html
Words: 244
Location: Buffalo, NY
Category: blagosphere
10/26/07 04:21 - 60ºF - ID#41821
something more interesting
Someone ( everyone!) over at Estrip.org has their panties in a bunch about something to do with the fact that they are not taken seriously as bloggers. Take a number and get in line, I say.
But estrip is by far the most colorful screenshot in the bunch.
- Z
Permalink: something_more_interesting.html
Words: 62
Location: Buffalo, NY
10/26/07 03:09 - 60ºF - ID#41820
code
Notes:
- does not require any hooks in your HTML code; just make sure your form has fields named 'username' and 'password' and import the Javascript
- can be attached to any form with an access-restricted target; script will pre-authenticate and, if successful, send the rest of the form as usual.
- You're not going to be able to use the server script as-is because it's kind of dependent on other parts of the project. You're not going to be able to read the server script as-is because it's Python. [Also in the full version you can change your authentication realm, and users in the special '_administrator' realm can log in to anyone's site.]
- no
- on successful authentication, 'validate' returns 204 No Content. on unsuccessful authentication, server returns 400 Bad Request.
- Z
Permalink: code.html
Words: 184
Location: Buffalo, NY
10/26/07 12:42 - 47ºF - ID#41808
picking a scab
But I got it solved. 1: Never send 401 Unauthorized without a WWW-Authenticate header. It's not allowed, and you'll get what you deserve. RFC 2617 briefly mentions using 400 Bad Request to report miscellaneous failures to the browser, and sure enough, that resets Safari. 2: If the script detects a failure, send another request to the same URL using a bogus username. This will of course fail, resetting Firefox in the process [thanks (e:kookcity2000)]. I think that's a gruesome hack, but if it works it works.
Why do I care about HTTP authentication? Most importantly, I want to support authenticated, noninteractive web services [specifically an authenticated RSS feed]. Since this code will have to live in my server somewhere, I might as well get some mileage out of it. HTTP Digest is often overlooked but it's a nice middle ground between static hashes [which are plaintext-equivalent] and full-blown encryption [CPU load].
Source code available upon request.
- Z
Permalink: picking_a_scab.html
Words: 198
Location: Buffalo, NY
10/24/07 10:18 - 50ºF - ID#41787
dorky geek question
Here's a stupid geek trick. The correct login information for this is user="user", password="password". Give it the wrong password [it will say something like 401 Unauthorized, user="user", password="bogus"]. Then give it the right password and try again - it will keep sending the wrong password. This happens in both Firefox and IE; Safari has a slightly different bug.
Here's the sitch: I have an XMLHttpRequest going out to a password-protected resource. The credentials are supplied by the user and thus they are likely to be wrong some of the time. The script is designed to gracefully handle authentication failure - specifically, I want to avoid the crappy infinite HTTP authentication dialog box loop. I'd think that this issue would come up from time to time, but I guess it doesn't because this is really hairy:
XMLHttpRequest states "If authentication fails, user agents SHOULD prompt the users for credentials."
To work around this, Paul James suggests returning 401 Unauthorized without the mandatory WWW-Authenticate header. In theory, this tells the browser to stop trying and forget the password. The browser does, in fact, stop trying, but it also goes into a weird undefined state where it continues to issue the old [incorrect] password despite instruction to the contrary. [Safari instead puts up the dialog on the next request, even if credentials are provided.]
HTTP/1.1 states "If the 401 response contains the same challenge as the prior response, and the user agent has already attempted authentication at least once, then the user SHOULD be presented the entity that was given in the response, since that entity might include relevant diagnostic information." - ie, reissue the same challenge to indicate to the browser that it should give up. As near as I can tell, not a single browser has ever done that.
HTTP/1.1 also gives us 403 Forbidden: "Authorization will not help and the request SHOULD NOT be repeated." This response has the same bizarre effects as 401 without WWW-Authenticate.
I'm actually kind of an AJAX newb, so ... does anyone have any recommendations?
- Z
Permalink: dorky_geek_question.html
Words: 387
Location: Buffalo, NY
Author Info
Date Cloud
- 10/11
- 08/10
- 07/10
- 06/10
- 05/10
- 04/10
- 03/10
- 02/10
- 01/10
- 12/09
- 11/09
- 10/09
- 09/09
- 08/09
- 07/09
- 06/09
- 05/09
- 04/09
- 03/09
- 02/09
- 01/09
- 12/08
- 11/08
- 10/08
- 09/08
- 08/08
- 07/08
- 06/08
- 05/08
- 04/08
- 03/08
- 02/08
- 01/08
- 12/07
- 11/07
- 10/07
- 09/07
- 08/07
- 07/07
- 06/07
- 05/07
- 04/07
- 03/07
- 02/07
- 01/07
- 12/06
- 11/06
- 10/06
- 09/06
- 08/06
- 07/06
- 06/06
- 05/06
- 04/06
- 03/06
- 02/06
Category Cloud
More Entries
After This
My Fav Posts
- This user has zero favorite blogs selected ;(
So now when I spray vinegar all over my kitchen nooks and crannies, I can do my death dance and chant krrigs, you are being riggged. Or wait, is it myrornas which means "ants"? That would so defeat the rhyme. :/
You know, I heard something like this recently. I forget where. If you are at a party and someone says something clever, and you are left at a loss for words, and then just as you are leaving the party and hovering over the staircase leading out, you think of a riposte, it's called esprit d'escalier, which means "The wit of the staircase" in French. So it's an answer thought up too late. Some European languages are so visual-driven, it's amazing.