Monthly archives: August 2007

Google Adds YouTube-style Embedded Maps

29Aug07

Google has finally provided the long awaited feature to easily embed maps into existing web pages. Before this feature was added, users had to have to make use of the Google Maps API which involved extensive amounts of JavaScript to embed a map on a site. Adding advanced features such as a Get Directions form or custom icons required even more JavaScript.

Therefore, over a year ago I created an extensive tutorial to ease the process for the average website creator to add a nice Google Map to their own site. This post brought quite a bit of traffic to my blog and propelled my site to be the #1 search result on Google for the search term “Google map directions tutorial.”

I’m sure this new embed feature from Google will cut down on the number of people using my tutorial, but I’m still glad to see Google release this new feature. Who knows, I may have to write another tutorial detailing how to get the most out of the embed feature. You’ll just have to wait and see.

Some people may still require the Google Maps API, but I’m not sure why they would. They would have to be doing some really complex map stuff to not be able to accomplish the same feats with embed functionality.

Below I’ve included a map I quickly created to show of this new feature.


View Larger Map.

Before I forget, you can read more about this on Google Lat Long Blog.

Filed under Google, Web Development| | No Comments

Motorola SB5120 SurfBoard Cable Modem Review

18Aug07

Motorola SB5120 SurfBoard When Lauren and I moved to a larger town earlier this year, I finally had the opportunity to get Cable Internet and join the 21st century with broadband. Technically, I was in the 21st century before I moved because I did have Digital Subscriber Line (DSL). However, I was never totally satisfied with the local DSL provider because I would randomly lose my so called always-on Internet connection for long periods of time and the connection speed could have been better (only .5 meg a second). So I had my heart set on switching to cable Internet as soon as I had the opportunity.

Instead of renting a modem from my Internet Service Provider (ISP), I opted to purchase one from Newegg or Amazon (can’t remember which). I decided to purchase a modem instead of rent one because after several months of renting I would have paid for a modem and once I reach the break even point, I’ll be saving a few bucks each month. Before buying I did a bit of research to determine which cable modem was the best for the price and was approved to work with my ISP. I settled on the Motorola SB5120 SurfBoard.

Its hard to write a review on a cable modem since you don’t really interact with it much. Its not like a wireless router where you have a complex configuration page with lots of options. A cable modem basically just has to be plugged in correctly to work. So as long as it works most people are happy.

Well, the Motorola SB5120 SurfBoard works. I suppose I can expound on this statement and write a positive review. I mean I haven’t had any trouble with the modem whatsoever in the last three or four months of use. The modem is virtually silent (which is probably a common trait of cable modems). It also has handy status indicator lights to let you know what’s going on with your connection.

One of the coolest and my favorite feature is the ability to put the unit in standby mode. In essence, Standby mode lets you temporarily disconnect the modem from the Internet while still letting you Local Area Network (LAN). The standby button on top of the modem makes this task really simple. All you have to do is hit the button to switch into and out of Standby mode. With this modem there is no reason to disconnect any cables in order to suspend your Internet connection.

One of the reasons I can think of using the standby feature is security. You can’t be hacked from the Internet while you’re not connected to the Internet. If you limit your connection time, you in effect limit the opportunities for an attacker. Of course, this is really for the paranoid people out there.

One of the big features of the modem Motorola pushes is the ability to use either a USB or Ethernet cable to connect the modem to your computer. I however do not see how this is that useful. First off, I’m not about to connect my cable modem directly into my computer. I, like most people who would be reading this article, have a small home network so I want to share my Internet connection. Therefore, I plug it into my wireless router which uses an Ethernet connection. Moreover, the wireless router servers as NAT router. Using a NAT router offers some great security benefits over having a modem connected directly into your computer such as only allowing incoming connections that were requested (assuming proper port-forwarding settings). Enough on this, I’m starting to go off topic on my review.

As far as improved connection speeds go, I can’t really make a judgment since I’ve never had cable Internet access without this particular modem. I can comfortably say I don’t think this modem has slowed anything down. If anything, it might be a little faster. I know non-peak connection hours, I have almost doubled the 6 meg a second download speeds advertised by my ISP. I’m not sure if this is due to the modem or if its simply because I’m not fighting for bandwidth with other cable Internet users.

To sum up my review, I’ve been really pleased with the Motorola SB5120 SurfBoard Cable Modem and would purchase it again. Although all cable modems serve the same purpose and users have no reason to interact with them once setup, the SurfBoard will continue to be trouble free and do its tasks well. What else can someone wish for?

Filed under Reviews| | 2 Comments

AJAX Security Considerations…

10Aug07

As many of my blog readers know AJAX is a very popular web development technology right now. AJAX offers web developers the ability to provide desktop application like functionality in web applications. Without AJAX many of the tools I use every day such as GMail, Google Reader, and Google Maps just wouldn’t be near as fun or easy to use. Don’t worry, I do occasionally use non-Google sites that make heavy use of AJAX, I just can’t think of them right now.

However, as recently reported by security researches from SPI Dynamics at the Blackhat USA 2007 security conference, the benefits of AJAX don’t come without significant security risks.

One of the main problems with AJAX is that a lot of traditional server side code is now executed on the client side. This provides would be hackers with a ton of insight on how your application functions. Once equipped with these details it is much easier for hackers to trick web applications into doing things they’re not designed to do.

The presenters at Blackhat showed the audience how a mock AJAX travel site could be tricked into selling tickets cheaper and also tricked into blocking ticket sales for the same airplane. I think these two examples show exactly how important it is for web developers to secure AJAX.

My recommendation on this subject is to not stop developing with AJAX but to take the time and effort to learn about the security problems associated with this web development technique and the ways to avoid the common pitfalls–doing so will make the web a safer place for each of us.

Just so you know where to start more about AJAX security, Darknet offers some good insight on securing AJAX by explaining some of the common ways to attack AJAX applications.

[via Ars Technica]

Filed under Security, Web Development| | No Comments