|
|
Previous MeetingsThe Evils of JavaScriptWednesday, October 6th, 2010 6:45 PM Working in JavaScript and not understanding XSS attack vectors is a lot like knowing how to drive a car without knowing any traffic laws, rules, or practices. Sure you can get from point A to point B, but when you drive on the wrong side of the road, fly through stop signs, or go twice the speed limit, you're bound to have some difficulties. Too often I find JavaScript developers blithely unaware of the power of JavaScript and the ability of attackers to exploit and abuse that power better than you. In short I want to scare the crap out of you Billy Hoffmans style, http://blip.tv/file/3684946 Be prepared for a healthy heaping overdose of paranoia followed by the best practices and tools you never knew you needed to deal with these new nightmares. In anticipation of Halloween, expect to be scared, terrified, and maybe after this talk some of you will considering going as a JSONP requests this Halloween! OOOoooo... Scary... HTML5 WebsocketsAugust 4, 2010 Utilize HTML5 APIs today in your JavaScript! Tired of waiting on your users to request new information before they can get the latest updates? Worse, tired of delivering the same stale content to users on refresh when you could save bandwidth by letting them k now when new data is available? Or maybe you just want your web app to update instantaneously when a new message, friend update, IM, or alert has been posted to their account rather than waiting for them to hit the refresh button. Well, there's an API for that and it's called Websockets, full-duplex communications coming to a browser near you! The real-time web is here, and it's ready today! Demo? Checkout http://html5demos.com... and watch the real-time lightweight goodness! And oh ya, we're going to be covering watching your users every move down to the second and meter (if they have a GPS enabled device) and having your users be okay with it! This one's going to be good. Trust me. =) Adam Crabtree
|