I am at work wearing clothes that (e:matthew) wore before and he must have been around cats because I am covered in itchy spots and my throat and eyes are all itchy.

I think it is really time to seek alergy treatment as it seems to be getting worse. Man I hate cats.

This journal is realy a combination of the Squeaky Wheel Peep Show and the Geek Meet.



When I first got to the geek meet I seriously thought no one was gonna come. The screens weren't set up and I was convinced we didn't have enough speakers. I was definately wrong because we went way almost till 9PM and the discussion room was packed most of the time.

It actually seemed like a really sucessful show accept for the crappy sales pitch from 3created. Unlike (e:kara) [inlink]kara,35[/inlink] I have no problem saying that I thought that his work totally sucked. He offered nothing new or particularly original and was a sales. You guys know how I feel about that.

I got a couple job offers not that I ever plan on leaving my wonderful state job at Roswell Park.



My talk was about AJAX. It was really hard to balance getting into details with being general enough to keep peoples attentions. I think I did a good job of balancing the two. It is hard to describe a complicated set of tehcnologies in twenty minutes.



The night before was the Squeeky Wheel Peep Show at The Hotel Lenox. Each room of the eigth floor of the hotel was an installation with the them of a peep show. I really felt at home at this event because I knew some of the particpants and becaus eit was in a hotel where I was wearing pajamas. (e:robin)'s exhibit encourage the viewer to get into pajamas and lay on her bed with her. Needless to say I drank too much Tequilla for me first time drinking tequilla. It made my head hurt really bad in the morning, thanfully it went away by the geek meet.











After the hotel we I went we the epeepettes to the pink and the towne restaurant. When I came hoem (e:robin) and (e:terry) were playing with the sugar gliders. All in all it was a nice weekend.

Another twisted media clip, I know how you love your classic macs. Artvoice is hiring also.

This hotel art party is frakin insane. I am currently in pajamas in robins room sitting next to someone's sneakers and drinking tequilla. This remeinded me of twisted.

Turns out that microsoft has known about this since 2002 and has done nothing about it. Why not disable javascript pasting in the internet zone by default seeing as 90% of epople are not going to even know to do that. They have had a multitide of patches since 2002, so there is no reason this could not have been changed.

I decided to write to the Buffalo News about this as my newest version of the IE clipabord security exploit is so sinister that it can constantly monitor your clipboard data in IE for windows and send it to my database, no matter what app you are in as long as you leave IE open.

Although, there is a solution for this which I posted in the computer journal, almost no one has it installed as I have collected thousands of clipboard for my news epoem entitiled "Microsoft Security" which I am reading that I am reading at the e-poetry symposium next week.

Here was my letter, let's see where it goes.

Hey Steve,
I think you will find this extremely interesting. This week I accidentally discovered a major security flaw that affects IE for PC which allows me to read the visitors clipboard contents from a website with just a few lines of code. Just think what is in your clipboard, sensitive data such as passwords, account numbers, contact data, copied emails, copied instant messenging conversations, private documents, etc. Also, there is essentially no limit to the size of the clipboard, so the amount of data can be pages long including entire documents.

While people may have already known about this clipboard security exploit, as far as I know, no one has combined this flaw with current AJAX (Asynchronous Javascript and XML) technology. With this technology combo I can create a web site that continuously monitors the contents of a user's clipboard and forwards it to a database any time the content has changed without any indication to the user. It doesn't even matter what windows application they are using when copying new data, as long as the web page is open somewhere in the background. This is the global system clipboard, not something specific to the browser.

You can see it for yourself. Copy some innocuous data to your clipboard and then visit with IE for windows. You should see your clipbaord data echoed into the page. Then for the extraordinary part, leave the site open but switch apps. Anything you copy into your clipboard gets copied onto the page and sent to my database.

I think this particular security flaw is newsworthy because people can see the results right in their browsers. What is most incredible is that unlike flaws where you could say search for data on a users computer, using this method, it's almost like the users brings you their most sensitive data to you.

There is a solution to this that involves disabling paste scripting in your internet options but by default it is enableed which leaves 90% of people wide open.

You cannot believe the data I have collected with this, remember that each bit of data can be associated with an IP addr. If a particular organization was targeted your could definately compromise security in a serious way.

Feel free to email me if you have any questions.

Paul Visco