Tag Archives: json
Having fun with node.js & Redis
Last week I set up node.js for the first time. I did it on my Dreamhost shared server, but since that goes against the Terms of Service, I set up a small dedicated virtual server at RackspaceCloud. My configuration uses: Ubuntu 10.04.1 subversion node.js grasshopper node_redis redis So far it’s been a lot of fun, [...]
Interesting JSON vulnerability (old stuff)
Somebody at work passed this article about an interesting vulnerability in web APIs that use JSON. The exploit combines Cross Site Request Forgery (CSRF) with a JSON Array hack allowing an evil site to grab sensitive user data from an unsuspecting user. The hack involves redefining the Array constructor, which is totally legal in Javascript. http://haacked.com/archive/2008/11/20/anatomy-of-a-subtle-json-vulnerability.aspx [...]
More updates to Mooml coming soon
I’ve been very busy lately, both with spaniards.es and at work. Too much stuff to do. Nevertheless, I’ve been working lately on a version of Mooml that does not rely on with/eval. The problem of using eval (which has bad reputation but is used every time we parse JSON -unless you use this- or load [...]
Having fun with Mooml & Twitter
Mooml is a templating engine for Mootools. With it, you can create HTML from Javascript using a very clean syntax. Plus, it is extremely useful when you have to generate repeating elements, since Mooml automatically renders arrays of data multiple times. Let’s see an example. Searching Twitter Nowadays there are a lot of APIs out [...]
