![[RSS]](http://tweakimg.net/g/if/v2/icons/rss_small.png){kind=icon}
The real reason Apple and Microsoft are embracing 'HTML5'
Just the other day Microsoft has chimed in with Apple in its fight against Adobe's Flash calling it 'proprietary' and 'not-open' and pushing forward 'HTML5' as the technology of the future. Both posts seem to focus on video on the web and it is striking that they both mention H.264 as the codec of choice, a codec that is neither free nor open and has little to do with HTML5 itself.
Read more »
Read more »
CSRF protection with 'self-validating' tokens
Cross-site Request Forgery is a very common social exploit method to make people unknowingly do things on their own behalf on a targeted website. It's the number four on the 2010 CWE/SANS Top 25 Most Dangerous Programming Errors list.
The main reason this problem exists in most websites is the fact that they don't check the origin of an incoming request that results in an action on that website. There are several ways a website can protect itself against these sort of attacks and I'm going to explain the way we, at Tweakers.net, have implemented our own protection method.
Read more »
The main reason this problem exists in most websites is the fact that they don't check the origin of an incoming request that results in an action on that website. There are several ways a website can protect itself against these sort of attacks and I'm going to explain the way we, at Tweakers.net, have implemented our own protection method.
Read more »
The MS browser ballot page analyzed
There's been a lot of talk about the new Microsoft browser ballot screen lately. I for one would like to say that I think this solution is a very good thing. I really commend Microsoft for having come up with this solution. It seems that this solution however is not very well understood by some people who just think it is annoying and 'blame' the European Commission for 'butting in' on the free market.
Read more »
Read more »
Die IE6, die!
The Dutch nowadays are a conservative kind of people; they don't like to stick out their necks when it comes to radical changes. They much rather prefer to keep everything as it was. But when a greater power tells them to jump, the Dutch will gladly ask "how high?"
Read more »
Read more »
Clientside performance no priority for Dutch websites
As a senior developer at Tweakers.net and being specialized in frontend development I always take clientside performance very seriously. Even if your backend code is optimized to the bone, a slow rendering frontend can still spoil the whole experience for your visitors, and a bad first impression will make your visitors go elsewhere. A couple of recent articles on some other Dutch ICT-centered newssites made me wonder if they are taking clientside performance just as seriously.
Read more »
Read more »
