From barney at clickwork.net Mon Aug 24 05:19:55 2009 From: barney at clickwork.net (Barney Carroll) Date: Mon, 24 Aug 2009 11:19:55 +0100 Subject: [thelist] How did FF 3.1 introduce itself? Message-ID: <472577830908240319n288bd41aub6f93b2b762eaf08@mail.gmail.com> Hello list, Something I'm always meaning to do but never get around to is taking note of how new versions of browsers introduce themselves to the public. Anyone know of such a resource? I know evolt is great for keeping old browser versions, but this is a bit more specific. Specifically, I'm wondering how FF3.1 (and beyond) introduced themselves ? was it a case of telling each user 'hey, there's a new version ? we took the liberty of upgrading while you were out but you can restart now to see the difference'? Or was it something less presumptuous, seeing as it was such a major release? Regards, Barney Carroll barney.carroll at gmail.com 07594 506 381 From marun2 at gmail.com Mon Aug 24 06:24:38 2009 From: marun2 at gmail.com (Mohan Arun L) Date: Mon, 24 Aug 2009 16:54:38 +0530 Subject: [thelist] ...try again Message-ID: >>> The code works great as long as I'm calling a script on my domain, but fails when I try to call the script from one of our other domains. So now I'm shifting gears into looking for a cURL alternative. John >>> You can try Mixendo XHR which is here (they have a working demo of cross domain scripting) http://dev.mixendo.com/wiki/Mixendo_XHR?gclid=CNDri5CL85kCFcQtpAodZ1GRQw - a light-weight JS library that, once included, let you use your XMLHttpRequest object as always - but cross-domain enabled! - supports all length of URLs, and HTTP modes, so that you can do POST and GET without worry - supports cookies Cross domain ajax using php: http://ajaxpatterns.org/Cross-Domain_Proxy http://www.phpfour.com/blog/2008/03/cross-domain-ajax-using-php/ ------------------------------------------------------------------------------- http://MohanArun.com ::: http://WebDesignExpert.Me ------------------------------------------------------------------------------- From sarahwbs at gmail.com Mon Aug 24 07:34:40 2009 From: sarahwbs at gmail.com (Sarah Adams) Date: Mon, 24 Aug 2009 09:34:40 -0300 Subject: [thelist] Joomla anyone? also PHP randomizer? In-Reply-To: <0f2601ca22c7$affde9d0$0ff9bd70$@com> References: <0f2601ca22c7$affde9d0$0ff9bd70$@com> Message-ID: <4A9288E0.3010906@gmail.com> > So, now I've got this great template for my site, with ASP code to make the > one background image switch out. And, Joomla's main page is a php page so > it won't even read my ASP code. It appears as though I have to create my > template somewhat differently than my usual method, though I'm finding some > workarounds for that to simplify things a little. Another option is too add a Joomla extension to handle this. There are several options listed here: http://extensions.joomla.org/extensions/photos-&-images/images-rotators/ -- sarah adams web developer & programmer http://sarah.designshift.com From fredthejonester at gmail.com Mon Aug 24 09:56:46 2009 From: fredthejonester at gmail.com (Fred Jones) Date: Mon, 24 Aug 2009 17:56:46 +0300 Subject: [thelist] Superfish and IE8 Message-ID: <177c0a10908240756j793cc16bwdf2aed8e782717b2@mail.gmail.com> Anybody know of any issues with Superfish menus and IE8? We are about to release a new site using superfish and all tested browsers work, except IE8. Behavior there is pretty weird--the first submenu appears as the main menu links and all the other links show up as a big mess below. Not sure yet why. It's here http://tinyurl.com/moy5eh Please don't publish the real URL just yet. :) Thanks. From david at chelseacreekstudio.com Mon Aug 24 12:09:21 2009 From: david at chelseacreekstudio.com (David Laakso) Date: Mon, 24 Aug 2009 13:09:21 -0400 Subject: [thelist] Superfish and IE8 In-Reply-To: <177c0a10908240756j793cc16bwdf2aed8e782717b2@mail.gmail.com> References: <177c0a10908240756j793cc16bwdf2aed8e782717b2@mail.gmail.com> Message-ID: <4A92C941.9060401@chelseacreekstudio.com> Fred Jones wrote: > Anybody know of any issues with Superfish menus and IE8? We are about > to release a new site using superfish and all tested browsers work, > except IE8. > > Behavior there is pretty weird--the first submenu appears as the main > menu links and all the other links show up as a big mess below. Not > sure yet why. It's here http://tinyurl.com/moy5eh Please don't > publish the real URL just yet. :) > > Thanks. > Validate the markup and the level 2.1 CSS and bring it back. From fredthejonester at gmail.com Mon Aug 24 12:51:06 2009 From: fredthejonester at gmail.com (Fred Jones) Date: Mon, 24 Aug 2009 20:51:06 +0300 Subject: [thelist] Superfish and IE8 In-Reply-To: <4A92C941.9060401@chelseacreekstudio.com> References: <177c0a10908240756j793cc16bwdf2aed8e782717b2@mail.gmail.com> <4A92C941.9060401@chelseacreekstudio.com> Message-ID: <177c0a10908241051n17b05d35idbf77816b9500c5c@mail.gmail.com> > Validate the markup and the level 2.1 CSS and bring it back. Hey, that was it. Ever since I switched to Linux and lost the Firefox HTML Validator plugin, I forget to check. The Total Validator plugin is not *nearly* as good. Anyhow, thank you very much! From marun2 at gmail.com Tue Aug 25 03:14:35 2009 From: marun2 at gmail.com (Mohan Arun L) Date: Tue, 25 Aug 2009 13:44:35 +0530 Subject: [thelist] Joomla anyone? also PHP randomizer? Message-ID: >>> Any suggestions? I don't know PHP at all, though I am guessing that there is a PHP function similar to that which I'm using in ASP to make the background switch out (thank you again, Brian!). Or I could use Javascript if I could figure that out. As I've mentioned previously, my web expertise is more in the marketing area, and the more technical things I am very shaky on-trying to learn, though! >>> I guess I remember you wanted the background dancer image to change upon every page load. I guess you need php image rotation script. http://www.marcofolio.net/webdesign/php_random_image_rotation.html If the dancer image switch needs to be initiated by the user (on clicking a link or something) then you would need to use alternate style sheet. http://meyerweb.com/eric/css/edge/complexspiral/demo.html (scroll down to the section titled 'alternate fun') If you view source you can see alternate stylesheet in use - to change stylesheet (which changes the background image) you would click on the link that initiates the action or go to View > page style> and change the style sheet there. (Firefox) -------------------------------------------------------------------------------------- http://MohanArun.com :::: http://WebDesignExpert.Me -------------------------------------------------------------------------------------- From jcorry.lists at gmail.com Tue Aug 25 07:36:16 2009 From: jcorry.lists at gmail.com (John Corry) Date: Tue, 25 Aug 2009 08:36:16 -0400 Subject: [thelist] cross browser
float weirdness In-Reply-To: References: Message-ID: <92de8b7b0908250536m33c443bds808182f87499ae36@mail.gmail.com> Thank you! That did it! John > > I just removed the 'clear: right;' from "DIV.gallery-image-container" and > seemed fine to me in all browsers. > > IE hasn't been very good with 'clear' in the past. > > Hope this helps, > > Nadeem Hosenbokus > Exocet Studios - a brand of Multigraphics Ltd > Office: (+230) 212 6390 / 208 6499 > Mobile: (+230) 254 8221 > Fax: (+230) 212 6789 > 24 St. Georges Street, Port Louis, Mauritius From bobm at dottedi.biz Tue Aug 25 10:00:00 2009 From: bobm at dottedi.biz (Bob Meetin) Date: Tue, 25 Aug 2009 09:00:00 -0600 Subject: [thelist] CAPTCHA In-Reply-To: <4A8B3EA0.7040300@dottedi.biz> References: <4f3c4ccc-6b20-4502-ae33-8a2a110e5246@striderweb.com> <472577830908070826g74e1acafkaef7c26e8dcc23e8@mail.gmail.com> <3cba52b9335f054fb6d2e68618e018c60762adc2@sfmail01.lchb.com> <7b290204102.00000303vaspers@inbox.com> <4a2d3d18.4000404@gmail.com> <17a101c9e845$7f098e90$7d1cabb0$@com> <564271AE150.000003ADvaspers@inbox.com> <4A7DF86D.6030506@fayec.com> <4a7e28b7.09035a0a.0fe6.4ace@mx.google.com> <4eedb92a0908081907x7509db5m7cbf71c926642dd6@mail.gmail.com> <9A9F21DB-0024-4ECB-AB55-B8C3FAC91A9A@striderweb.com> <4A8B18E2.2080702@hondaswap.com> <4A8B1BEE.9080102@choctaw.co.uk> <4A8B3EA0.7040300@dottedi.biz> Message-ID: <4A93FC70.1010809@dottedi.biz> BTW - if anyone is interested in comparing blog SPAM blacklist words and/or combining them into a super list, I'm game to ante-ing mine which is beginning to look like a medical dictionary. I'd even provide a webpage to list them for the better good. I just can't email it to the list as the contents will get captured. -Bob From kasimir.k.lists at gmail.com Tue Aug 25 10:54:49 2009 From: kasimir.k.lists at gmail.com (kasimir-k) Date: Tue, 25 Aug 2009 18:54:49 +0300 Subject: [thelist] ...try again In-Reply-To: <4DAD6E84-B413-41C9-BBBF-73ED834FB4F6@gmail.com> References: <92de8b7b0908221933p61e15f2cxae8bcbecc2e4ab3@mail.gmail.com> <4A90B04D.7090304@baratta.com> <61ed1fc20908222003ofda54e8g6e5be867eed24@mail.gmail.com> <4DAD6E84-B413-41C9-BBBF-73ED834FB4F6@gmail.com> Message-ID: <4A940949.309@gmail.com> John Corry scribeva in 2009-08-23 06:25: > That's the problem. The awful host the site is on has php compiled -- > without-curl . cURL is not the only option for a HTTP client in PHP. You could roll your own using PHP's fsockopen()[0], or use Zend Framework's HTTP client[1], which uses fsockopen(), or google for loads of alternatives[2]. .k [0] http://php.net/fsockopen [1] http://framework.zend.com/manual/en/zend.http.html [2] http://google.com/search?q=php+http+client From joel at bizba6.com Tue Aug 25 15:52:05 2009 From: joel at bizba6.com (Joel Canfield) Date: Tue, 25 Aug 2009 13:52:05 -0700 Subject: [thelist] make PDFs open at 100% Message-ID: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> At http://ccnb.info/ they'd like the various PDFs on the research reports and minutes pages to open at 100%. I'm assuming that's a client setting. Is there a way to control the size they're displayed at? joel -- Joel at Bizba6.com http://BusinessHeretics.com/ From lacy.faire at gmail.com Tue Aug 25 16:36:55 2009 From: lacy.faire at gmail.com (Lacy Faire) Date: Tue, 25 Aug 2009 14:36:55 -0700 Subject: [thelist] make PDFs open at 100% In-Reply-To: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> Message-ID: Ctrl-D (Document Settings) Initial View Tab (using Acrobat 7) On Tue, Aug 25, 2009 at 1:52 PM, Joel Canfield wrote: > > At http://ccnb.info/ they'd like the various PDFs on the research reports > and minutes pages to open at 100%. > I'm assuming that's a client setting. Is there a way to control the size > they're displayed at? > > joel > > -- > Joel at Bizba6.com > http://BusinessHeretics.com/ > -- > > * * Please support the community that supports you. ?* * > http://evolt.org/help_support_evolt/ > > For unsubscribe and other options, including the Tip Harvester > and archives of thelist go to: http://lists.evolt.org > Workers of the Web, evolt ! From joel at bizba6.com Tue Aug 25 16:46:51 2009 From: joel at bizba6.com (Joel Canfield) Date: Tue, 25 Aug 2009 14:46:51 -0700 Subject: [thelist] make PDFs open at 100% In-Reply-To: References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> Message-ID: <619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com> Thanks; I'm looking for a web option since these are archive documents provided by the client, and it's not likely anyone's going to go re-create them. A web option? joel On Tue, Aug 25, 2009 at 2:36 PM, Lacy Faire wrote: > Ctrl-D (Document Settings) > Initial View Tab > > (using Acrobat 7) > > > On Tue, Aug 25, 2009 at 1:52 PM, Joel Canfield wrote: > > > > At http://ccnb.info/ they'd like the various PDFs on the research > reports > > and minutes pages to open at 100%. > > I'm assuming that's a client setting. Is there a way to control the size > > they're displayed at? > > > > joel > > > > -- > > Joel at Bizba6.com > > http://BusinessHeretics.com/ > > -- > > > > * * Please support the community that supports you. * * > > http://evolt.org/help_support_evolt/ > > > > For unsubscribe and other options, including the Tip Harvester > > and archives of thelist go to: http://lists.evolt.org > > Workers of the Web, evolt ! > -- > > * * Please support the community that supports you. * * > http://evolt.org/help_support_evolt/ > > For unsubscribe and other options, including the Tip Harvester > and archives of thelist go to: http://lists.evolt.org > Workers of the Web, evolt ! > -- Joel at Bizba6.com http://BusinessHeretics.com/ From hassan.schroeder at gmail.com Tue Aug 25 17:01:57 2009 From: hassan.schroeder at gmail.com (Hassan Schroeder) Date: Tue, 25 Aug 2009 15:01:57 -0700 Subject: [thelist] make PDFs open at 100% In-Reply-To: References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> Message-ID: <4eedb92a0908251501v6a1c9715s1500d3f6a91b6873@mail.gmail.com> On Tue, Aug 25, 2009 at 2:36 PM, Lacy Faire wrote: > Ctrl-D (Document Settings) > Initial View Tab > > (using Acrobat 7) I'd love to know the answer to this, too* but this doesn't seem to be it -- at least there's no such thing I can find on Acrobat 8/Mac. * the one-more-reason-to-hate-Acrobat driving this interest is that PDFs seem to open up at bizarrely arbitrary sizes on every system I've used -- 54%, 67%, 108%, I mean, WTF? If people feel utterly impelled to use this crap, a smidgen of consistency would be nice... IMO :-) -- Hassan Schroeder ------------------------ hassan.schroeder at gmail.com twitter: @hassan From joel at bizba6.com Tue Aug 25 17:15:28 2009 From: joel at bizba6.com (Joel Canfield) Date: Tue, 25 Aug 2009 15:15:28 -0700 Subject: [thelist] make PDFs open at 100% In-Reply-To: <4eedb92a0908251501v6a1c9715s1500d3f6a91b6873@mail.gmail.com> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> <4eedb92a0908251501v6a1c9715s1500d3f6a91b6873@mail.gmail.com> Message-ID: <619d00930908251515n6ad44e36i5b314000a9834825@mail.gmail.com> > > * the one-more-reason-to-hate-Acrobat driving this interest is that > PDFs seem to open up at bizarrely arbitrary sizes on every system > I've used -- 54%, 67%, 108%, I mean, WTF? If people feel utterly > impelled to use this crap, a smidgen of consistency would be nice... > hey, are you saying there's something wrong with PDFs opening at 60.4% in my browser? I went through a phase where I had automated tools to turn documents into GIFs just to avoid PDFs. From jason.handby at corestar.co.uk Tue Aug 25 18:04:49 2009 From: jason.handby at corestar.co.uk (Jason Handby) Date: Wed, 26 Aug 2009 00:04:49 +0100 Subject: [thelist] make PDFs open at 100% In-Reply-To: <619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> <619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com> Message-ID: <9A50776858A21848A96469CDFCBCDEFF0267F970@exch-be12.exchange.local> > Thanks; I'm looking for a web option since these are archive documents > provided by the client, and it's not likely anyone's going to go re- > create > them. > A web option? Here's an idea. Instead of linking directly to your PDFs, link to a server-side script that opens them with a PDF component, reads them into memory, sets the relevant option and streams the document to the browser. I haven't tested this, but it looks like in ABCpdf.NET you can use the SetInfo method of the Doc object to set the default zoom of the current page to 100%: theDoc.SetInfo(theDoc.Root, "/OpenAction", "[ " + theDoc.Page.ToString() + " 0 R /XYZ null null 1 ]") I've no idea how you'd do this in PHP, which I'm sure will be your next question, but someone on here will know! Jason From steve.bigelow at tkcsb.com Tue Aug 25 19:50:53 2009 From: steve.bigelow at tkcsb.com (Steve Bigelow) Date: Tue, 25 Aug 2009 18:50:53 -0600 Subject: [thelist] make PDFs open at 100% In-Reply-To: <9A50776858A21848A96469CDFCBCDEFF0267F970@exch-be12.exchange.local> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com><619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com> <9A50776858A21848A96469CDFCBCDEFF0267F970@exch-be12.exchange.local> Message-ID: <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> You can specify a lot of the display attributes in the hash of the URL used to open the PDF document. For example, this link inside an HTML page might do what you want: [URLPathToThePDFDocument]/ThePDFDocument.pdf#zoom=100 ...where the key piece is the URL hash "#zoom=100", meaning you want the document to be scaled to 100%. Another option might be the hash "#page=1&view=fitH", meaning start the display on page 1 of the document, and scale the document to fit the horizontal width of its container. I've not tried this using PDF viewers other than Adobe Acrobat. Adobe's "PDF Open Parameters" documentation for Acrobat 7 (downlevel, I know) is at: http://partners.adobe.com/public/developer/en/acrobat/PDFOpenParameters.pdf Steve Bigelow TKCSB Images -----Original Message----- From: thelist-bounces at lists.evolt.org [mailto:thelist-bounces at lists.evolt.org] On Behalf Of Jason Handby Sent: Tuesday, August 25, 2009 5:05 PM To: thelist at lists.evolt.org Subject: Re: [thelist] make PDFs open at 100% > Thanks; I'm looking for a web option since these are archive documents > provided by the client, and it's not likely anyone's going to go re- > create them. > A web option? Here's an idea. Instead of linking directly to your PDFs, link to a server-side script that opens them with a PDF component, reads them into memory, sets the relevant option and streams the document to the browser. I haven't tested this, but it looks like in ABCpdf.NET you can use the SetInfo method of the Doc object to set the default zoom of the current page to 100%: theDoc.SetInfo(theDoc.Root, "/OpenAction", "[ " + theDoc.Page.ToString() + " 0 R /XYZ null null 1 ]") I've no idea how you'd do this in PHP, which I'm sure will be your next question, but someone on here will know! Jason -- * * Please support the community that supports you. * * http://evolt.org/help_support_evolt/ For unsubscribe and other options, including the Tip Harvester and archives of thelist go to: http://lists.evolt.org Workers of the Web, evolt ! From hassan.schroeder at gmail.com Tue Aug 25 20:08:16 2009 From: hassan.schroeder at gmail.com (Hassan Schroeder) Date: Tue, 25 Aug 2009 18:08:16 -0700 Subject: [thelist] make PDFs open at 100% In-Reply-To: <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> <619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com> <9A50776858A21848A96469CDFCBCDEFF0267F970@exch-be12.exchange.local> <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> Message-ID: <4eedb92a0908251808h15b97a9ere76cad9a36aeb02b@mail.gmail.com> On Tue, Aug 25, 2009 at 5:50 PM, Steve Bigelow wrote: > You can specify a lot of the display attributes in the hash of the URL used > to open the PDF document. > > For example, this link inside an HTML page might do what you want: > > [URLPathToThePDFDocument]/ThePDFDocument.pdf#zoom=100 > > ...where the key piece is the URL hash "#zoom=100", meaning you want the > document to be scaled to 100%. OK, but why should you *have* to do that? What makes PDFs open at arbitrary goofy sizes? Why wouldn't "100%" be the *default*?? -- Hassan Schroeder ------------------------ hassan.schroeder at gmail.com twitter: @hassan From joel at bizba6.com Tue Aug 25 20:29:01 2009 From: joel at bizba6.com (Joel Canfield) Date: Tue, 25 Aug 2009 18:29:01 -0700 Subject: [thelist] make PDFs open at 100% In-Reply-To: <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com> <619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com> <9A50776858A21848A96469CDFCBCDEFF0267F970@exch-be12.exchange.local> <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> Message-ID: <619d00930908251829j532dabc0s693a3f8a4884761d@mail.gmail.com> > > ...where the key piece is the URL hash "#zoom=100", meaning you want the > document to be scaled to 100%. > Adobe's "PDF Open Parameters" documentation for Acrobat 7 (downlevel, I > bingo. works for me in all my browsers on the Windows box. thanks loads. > http://partners.adobe.com/public/developer/en/acrobat/PDFOpenParameters.pdf > > and I'm off to give that a look for other toys to play with thanks muchly joel From admin at chrome.me.uk Tue Aug 25 17:20:19 2009 From: admin at chrome.me.uk (Chrome) Date: Tue, 25 Aug 2009 23:20:19 +0100 Subject: [thelist] Javascript array weirdness In-Reply-To: <01e601ca2297$2e805990$8b810cb0$@me.uk> References: <01d601ca2288$4850ec40$d8f2c4c0$@me.uk> <4A8EF1D2.5030801@turmel.org> <01e601ca2297$2e805990$8b810cb0$@me.uk> Message-ID: <029901ca25d2$3af58810$b0e09830$@me.uk> > > > As you can see this is meant to populate the array this.request > with > > values > > > from the theForm... Problem is that the array seems to be empty... > > The > > > strange thing is if that you call the array value by its key it has > > the > > > value but if you try to iterate through it it's blank (or seems to > > be) > > > > > > I tried inserting a hard value of this.request[1] = 'Test'; and got > > the > > > output as [undefined, 'Test']... so I tried this.request['test'] = > > 'Test'; > > > and got [ ] > > > > > > So I tried replacing the this.request array as a locally defined > > array > > > called request... Still blank > > > > > > Anyone know what's going on? I'm about to have a sub-orbital PC at > > this > > > rate ;) > > > > > > > Hi Dan, > > > > The Array datatype in javascript handles property get/put differently > > from other objects. It supports numeric indices as a zero-based > array, > > with automatically allocation up the highest index 'PUT' so far. > That > > explains the two values returned after assigning to index=1. > > > > It's unclear from the copy of the Ecmascript standard I'm looking at, > > but it appears that Array's only iterate over their numeric indexed > > properties. > > > > I suspect you want to define 'request' as a simple Object, not an > > array. > > > > HTH, > > > > Phil Turmel > > Hi Phil > > Thanks for taking a look! However, this script is running fine on a > few > sites... Here's an example: > > http://chrome.me.uk/shopdev/ > > It is running on a few other people's test sites... for the loop > iteration I > use: > > for (var i in Array) { // try this on, say, the document ;) > alert(Array[i]); > } > > Arrays in JS are associative (as they are in PHP etc.) so they key > really > shouldn't matter... This just seems to empty the array for no reason > > I've been using that prototype object for XHR for a while now > > Any other hints or clues? > > Cheers > > Dan Hi all I've noticed with this that the issue only arose on a site with Mootools (driving Slimbox)... Does anyone know why this might happen? Cheers Dan From jason.handby at corestar.co.uk Wed Aug 26 02:48:01 2009 From: jason.handby at corestar.co.uk (Jason Handby) Date: Wed, 26 Aug 2009 08:48:01 +0100 Subject: [thelist] make PDFs open at 100% In-Reply-To: <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> References: <619d00930908251352j6473b67ege8873ee72ac725a9@mail.gmail.com><619d00930908251446g7f6e8678k138e94253e36deb4@mail.gmail.com><9A50776858A21848A96469CDFCBCDEFF0267F970@exch-be12.exchange.local> <2751EFEAD1C945DE8DC6F3E3DEF578F7@hppav> Message-ID: <9A50776858A21848A96469CDFCBCDEFF0267F97A@exch-be12.exchange.local> > You can specify a lot of the display attributes in the hash of the URL > used > to open the PDF document. > > For example, this link inside an HTML page might do what you want: > > [URLPathToThePDFDocument]/ThePDFDocument.pdf#zoom=100 > > ...where the key piece is the URL hash "#zoom=100", meaning you want > the > document to be scaled to 100%. > > Another option might be the hash "#page=1&view=fitH", meaning start the > display on page 1 of the document, and scale the document to fit the > horizontal width of its container. > > I've not tried this using PDF viewers other than Adobe Acrobat. > > Adobe's "PDF Open Parameters" documentation for Acrobat 7 (downlevel, I > know) is at: > http://partners.adobe.com/public/developer/en/acrobat/PDFOpenParameters > .pdf This is a much better idea. I wish my google skills had enabled me to find it before posting :-) Thanks Steve, these look very useful. Jason From jason.handby at corestar.co.uk Wed Aug 26 04:02:41 2009 From: jason.handby at corestar.co.uk (Jason Handby) Date: Wed, 26 Aug 2009 10:02:41 +0100 Subject: [thelist] Javascript array weirdness In-Reply-To: <01e601ca2297$2e805990$8b810cb0$@me.uk> References: <01d601ca2288$4850ec40$d8f2c4c0$@me.uk><4A8EF1D2.5030801@turmel.org> <01e601ca2297$2e805990$8b810cb0$@me.uk> Message-ID: <9A50776858A21848A96469CDFCBCDEFF0267F9A6@exch-be12.exchange.local> > > > I tried inserting a hard value of this.request[1] = 'Test'; and got > > the > > > output as [undefined, 'Test']... so I tried this.request['test'] = > > 'Test'; > > > and got [ ] > > > > > > So I tried replacing the this.request array as a locally defined > > array > > > called request... Still blank Try declaring a local Object, rather than a local Array, and test with that. It looks as though your Array iterator implementation could be intentionally ignoring properties with non-integer keys...? Jason From dunawaydon at sbcglobal.net Thu Aug 27 13:48:40 2009 From: dunawaydon at sbcglobal.net (Don Dunaway) Date: Thu, 27 Aug 2009 11:48:40 -0700 (PDT) Subject: [thelist] JavaScript files Message-ID: <93730.38788.qm@web180013.mail.gq1.yahoo.com> Why are -- Iv?n Cervantes From joel at bizba6.com Fri Aug 28 01:48:58 2009 From: joel at bizba6.com (Joel Canfield) Date: Thu, 27 Aug 2009 23:48:58 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions Message-ID: <619d00930908272348g1447921hef77aea39479fec6@mail.gmail.com> I'm reading about Query String Authorization with S3 and my head exploded. Is there a clear and understandable method for serving video from S3, but not leaving access wide open, readable by the whole world? joel -- Joel at Bizba6.com http://BusinessHeretics.com/ From admin at chrome.me.uk Fri Aug 28 03:53:36 2009 From: admin at chrome.me.uk (Chrome) Date: Fri, 28 Aug 2009 09:53:36 +0100 Subject: [thelist] Javascript array weirdness In-Reply-To: <9A50776858A21848A96469CDFCBCDEFF0267F9A6@exch-be12.exchange.local> References: <01d601ca2288$4850ec40$d8f2c4c0$@me.uk><4A8EF1D2.5030801@turmel.org> <01e601ca2297$2e805990$8b810cb0$@me.uk> <9A50776858A21848A96469CDFCBCDEFF0267F9A6@exch-be12.exchange.local> Message-ID: <004f01ca27bd$08398510$18ac8f30$@me.uk> > > > > I tried inserting a hard value of this.request[1] = 'Test'; and > got > > > the > > > > output as [undefined, 'Test']... so I tried this.request['test'] > = > > > 'Test'; > > > > and got [ ] > > > > > > > > So I tried replacing the this.request array as a locally defined > > > array > > > > called request... Still blank > > > Try declaring a local Object, rather than a local Array, and test with > that. It looks as though your Array iterator implementation could be > intentionally ignoring properties with non-integer keys...? > > > Jason Hi Jason Thanks for the advice...I tried alert()ing the length of the array which was 0... Also I tried dumping the array prior to the iterator having a go... Completely blank Thanks for the suggestion; I'm going to try that and a few other things today... I'll post to the list when I figure out what's going on! Cheers! Dan From fredthejonester at gmail.com Fri Aug 28 06:25:48 2009 From: fredthejonester at gmail.com (Fred Jones) Date: Fri, 28 Aug 2009 14:25:48 +0300 Subject: [thelist] PNG Artifact Message-ID: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> Anybody know why I see little white boxes next to the navigation buttons on this site: http://tinyurl.com/kr23qt Login is dev/dev I see a little white box about 3 pixels square to the left of each PNG button image. Don't know what it is. :( From tonyc at boldfish.co.uk Fri Aug 28 06:50:37 2009 From: tonyc at boldfish.co.uk (Tony Crockford) Date: Fri, 28 Aug 2009 12:50:37 +0100 Subject: [thelist] PNG Artifact In-Reply-To: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> References: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> Message-ID: On 28 Aug 2009, at 12:25, Fred Jones wrote: > Anybody know why I see little white boxes next to the navigation > buttons on this site: > > http://tinyurl.com/kr23qt > > Login is dev/dev > > I see a little white box about 3 pixels square to the left of each PNG > button image. > > Don't know what it is. :( I'm seeing a little orange bullet to the left of each button - probably because of this: background:transparent url(images/orangebullet.jpg) no-repeat on the
  • at line 92 in zen-classic.css?4 From pieter at roosensdesign.com Fri Aug 28 06:46:07 2009 From: pieter at roosensdesign.com (Pieter Roosens) Date: Fri, 28 Aug 2009 13:46:07 +0200 Subject: [thelist] PNG Artifact In-Reply-To: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> References: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> Message-ID: Op 28-aug-09, om 13:25 heeft Fred Jones het volgende geschreven: > Anybody know why I see little white boxes next to the navigation > buttons on this site: > > http://tinyurl.com/kr23qt > > Login is dev/dev > > I see a little white box about 3 pixels square to the left of each PNG > button image. > > Don't know what it is. :( White? Hm, I see a few pixels of orange there in FF and Safari on Mac. Just to inform. Pieter From david at chelseacreekstudio.com Fri Aug 28 07:00:02 2009 From: david at chelseacreekstudio.com (David Laakso) Date: Fri, 28 Aug 2009 08:00:02 -0400 Subject: [thelist] PNG Artifact In-Reply-To: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> References: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> Message-ID: <4A97C6C2.9060701@chelseacreekstudio.com> Fred Jones wrote: > Anybody know why I see little white boxes next to the navigation > buttons on this site: > > http://tinyurl.com/kr23qt > > Login is dev/dev > > I see a little white box about 3 pixels square to the left of each PNG > button image. > > Don't know what it is. :( > Its orange in compliant browsers. Validate. For IE/6 Google subject line: iepngfix From randalrust at gmail.com Fri Aug 28 07:09:02 2009 From: randalrust at gmail.com (Randal Rust) Date: Fri, 28 Aug 2009 08:09:02 -0400 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <619d00930908272348g1447921hef77aea39479fec6@mail.gmail.com> References: <619d00930908272348g1447921hef77aea39479fec6@mail.gmail.com> Message-ID: On Fri, Aug 28, 2009 at 2:48 AM, Joel Canfield wrote: > I'm reading about Query String Authorization with S3 and my head exploded. I went through the same thing, Joel, but with uploading and downloading files. So I paid someone to write the code and ended up basically relying on S3 Firefox Organizer to upload files and generate new URLs if need be. Something you might find helpful is this NetTuts article: http://net.tutsplus.com/misc/how-to-use-amazon-s3-php-to-dynamically-store-and-manage-files-with-ease/ -- Randal Rust R.Squared Communications www.r2communications.com 614-370-0036 From fredthejonester at gmail.com Fri Aug 28 08:17:26 2009 From: fredthejonester at gmail.com (Fred Jones) Date: Fri, 28 Aug 2009 16:17:26 +0300 Subject: [thelist] PNG Artifact In-Reply-To: References: <177c0a10908280425i5c9b568ao54b4fd1ed939bcc3@mail.gmail.com> Message-ID: <177c0a10908280617p2741218xfcaaff8421bb080a@mail.gmail.com> > I'm seeing a little orange bullet to the left of each button - > probably because of this: > > background:transparent url(images/orangebullet.jpg) no-repeat Oh, my. Somebody pass the dunce cap please. :( Thanks! From joel at bizba6.com Fri Aug 28 10:07:42 2009 From: joel at bizba6.com (Joel Canfield) Date: Fri, 28 Aug 2009 08:07:42 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: References: <619d00930908272348g1447921hef77aea39479fec6@mail.gmail.com> Message-ID: <619d00930908280807q7ed7051ap93864fa8186a3243@mail.gmail.com> > > Something you might find helpful is this NetTuts article: > > http://net.tutsplus.com/misc/how-to-use-amazon-s3-php-to-dynamically-store-and-manage-files-with-ease/ > > thanks, but it doesn't address securing something served on a website. uploading and downloading are, in my head at least, fundamentally different from embedding a video in a page, where the address of the original video is just going to be part of the source code anyone could view. joel From mrmazda at earthlink.net Fri Aug 28 12:21:46 2009 From: mrmazda at earthlink.net (Felix Miata) Date: Fri, 28 Aug 2009 13:21:46 -0400 Subject: [thelist] IE UA strings Message-ID: <4A98122A.8010601@earthlink.net> Every Gecko I've tested reports correct UA in .ua-string on http://fm.no-ip.com/auth/dpi-screen-window.html but I have IE8 8.0.60001.18702 on WinXP reporting ...(compatible; MSIE 7.0.... Anyone with IE8 installed on WinXP show MSIE 8.0 on that page? On Vista? My apache access log does show instances of MSIE 8.0 from others, but not from my WinXP/8.0 system. -- How much better to get wisdom than gold, to choose understanding rather than silver. Proverbs 16:16 NKJV Team OS/2 ** Reg. Linux User #211409 Felix Miata *** http://fm.no-ip.com/ From morrison.ben at gmail.com Fri Aug 28 12:26:13 2009 From: morrison.ben at gmail.com (ben morrison) Date: Fri, 28 Aug 2009 18:26:13 +0100 Subject: [thelist] IE UA strings In-Reply-To: <4A98122A.8010601@earthlink.net> References: <4A98122A.8010601@earthlink.net> Message-ID: <6073aef90908281026p3cc4944fub0f35a5ced18e929@mail.gmail.com> Just a thought > does compatability settings make a difference? http://blogs.msdn.com/ie/archive/2008/08/27/introducing-compatibility-view.aspx On Fri, Aug 28, 2009 at 6:21 PM, Felix Miata wrote: > Every Gecko I've tested reports correct UA in .ua-string on > http://fm.no-ip.com/auth/dpi-screen-window.html but I have IE8 > 8.0.60001.18702 on WinXP reporting ...(compatible; MSIE 7.0.... Anyone with > IE8 installed on WinXP show MSIE 8.0 on that page? On Vista? > > My apache access log does show instances of MSIE 8.0 from others, but not > from my WinXP/8.0 system. > -- > How much better to get wisdom than gold, to choose > understanding rather than silver. Proverbs 16:16 NKJV > > ?Team OS/2 ** Reg. Linux User #211409 > > Felix Miata ?*** ?http://fm.no-ip.com/ > -- > > * * Please support the community that supports you. ?* * > http://evolt.org/help_support_evolt/ > > For unsubscribe and other options, including the Tip Harvester > and archives of thelist go to: http://lists.evolt.org > Workers of the Web, evolt ! > -- Ben Morrison From mrmazda at earthlink.net Fri Aug 28 12:54:01 2009 From: mrmazda at earthlink.net (Felix Miata) Date: Fri, 28 Aug 2009 13:54:01 -0400 Subject: [thelist] IE UA strings In-Reply-To: <6073aef90908281026p3cc4944fub0f35a5ced18e929@mail.gmail.com> References: <4A98122A.8010601@earthlink.net> <6073aef90908281026p3cc4944fub0f35a5ced18e929@mail.gmail.com> Message-ID: <4A9819B9.50805@earthlink.net> On 2009/08/28 18:26 (GMT+0100) ben morrison composed: > On Fri, Aug 28, 2009 at 6:21 PM, Felix Miata wrote: >> Every Gecko I've tested reports correct UA in .ua-string on >> http://fm.no-ip.com/auth/dpi-screen-window.html but I have IE8 >> 8.0.60001.18702 on WinXP reporting ...(compatible; MSIE 7.0.... Anyone with >> IE8 installed on WinXP show MSIE 8.0 on that page? On Vista? >> My apache access log does show instances of MSIE 8.0 from others, but not >> from my WinXP/8.0 system. > Just a thought > does compatability settings make a difference? > http://blogs.msdn.com/ie/archive/2008/08/27/introducing-compatibility-view.aspx I use Windows very little, and forgot about that. It certainly does make the difference. Thank you! It is barely apparent how to tell which is currently enabled, but the background around the icon is lighter in standards and darker in compatibility. Hovering tells what the button is for, but not its current state. :-( -- How much better to get wisdom than gold, to choose understanding rather than silver. Proverbs 16:16 NKJV Team OS/2 ** Reg. Linux User #211409 Felix Miata *** http://fm.no-ip.com/ From joel at bizba6.com Sat Aug 29 01:48:41 2009 From: joel at bizba6.com (Joel Canfield) Date: Fri, 28 Aug 2009 23:48:41 -0700 Subject: [thelist] interesting traffic change at our website Message-ID: <619d00930908282348t3ac42aa6xe0444ba0b749d273@mail.gmail.com> up 'til three days ago, our traffic was almost exclusively US. suddenly over the past three days, a spike in other countries; all very short (under 1 minute) visits out of 154 unique visitors US = 33 Turkey = 12 Vietnam = 12 Saudi Arabia = 8 Brazil = 7 Indonesia, Hong King, Taiwan, Australia, France all had a few; 47 different countries total we have lots of video on the site; does that attract wildly erratic international traffic? -- Joel at Bizba6.com http://BusinessHeretics.com/ From marun2 at gmail.com Sat Aug 29 07:30:19 2009 From: marun2 at gmail.com (Mohan Arun L) Date: Sat, 29 Aug 2009 18:00:19 +0530 Subject: [thelist] Amazon S3 for serving video: restricting permissions Message-ID: >>Is there a clear and understandable method for serving video from S3, but not leaving access wide open, readable by the whole world? >From my research, there is this Expires: http header which can be used in conjunction with the S3 key and S3 secret to authenticate a S3 request. >>thanks, but it doesn't address securing something served on a website. you could use a third party s3 file protection product s3downloader.com what they say: "If someone tries to paste the download url in their browser... They will get an error message telling them how to get access... ...Which takes them directly to Your Home Page!" If Query String Authentication is too much time and effort http://www.askmrvideo.com/public/136.cfm If you are using wordpress - thereis mediastreamguard.com ($67) Have a look at the last comment: http://spitzkoff.com/craig/?p=4 A Php code sample for query string authentication is here http://developer.amazonwebservices.com/connect/thread.jspa?messageID=96679𗦧 Basically you would set the Expires parameter (which I believe what s3fox does) so any request coming in after the Expires period would be denied. You would then keep giving out new URLs with expires set in the near future, every once in a while if more subscribers join new to your video membership site. Theoretically my first thought was that you could CNAME the DNS request to transparently map to S3 bucket url, and then use htaccess to limit access to that folder or subdomain, but I immediately realized that the DNS request would come first, before hitting htaccess authentication - correct me if wrong? ------------------------------------------------------------------------------------------------------------------------------------------------------------ http://MohanArun.com ::: http://WebDesignExpert.Me ::: http://Skoths.com ------------------------------------------------------------------------------------------------------------------------------------------------------------ From jimmyropes at gmail.com Sat Aug 29 08:00:45 2009 From: jimmyropes at gmail.com (James O'Donnell) Date: Sat, 29 Aug 2009 09:00:45 -0400 Subject: [thelist] interesting traffic change at our website In-Reply-To: <619d00930908282348t3ac42aa6xe0444ba0b749d273@mail.gmail.com> References: <619d00930908282348t3ac42aa6xe0444ba0b749d273@mail.gmail.com> Message-ID: <00c301ca28a8$ba192fb0$2e4b8f10$@com> You've made it to the big time. -----Original Message----- From: thelist-bounces at lists.evolt.org [mailto:thelist-bounces at lists.evolt.org] On Behalf Of Joel Canfield Sent: Saturday, 29 August, 2009 02:49 To: thelist at lists.evolt.org Subject: [thelist] interesting traffic change at our website up 'til three days ago, our traffic was almost exclusively US. suddenly over the past three days, a spike in other countries; all very short (under 1 minute) visits out of 154 unique visitors US = 33 Turkey = 12 Vietnam = 12 Saudi Arabia = 8 Brazil = 7 Indonesia, Hong King, Taiwan, Australia, France all had a few; 47 different countries total we have lots of video on the site; does that attract wildly erratic international traffic? -- Joel at Bizba6.com http://BusinessHeretics.com/ -- * * Please support the community that supports you. * * http://evolt.org/help_support_evolt/ For unsubscribe and other options, including the Tip Harvester and archives of thelist go to: http://lists.evolt.org Workers of the Web, evolt ! No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.409 / Virus Database: 270.13.69/2328 - Release Date: 08/26/09 12:16:00 From rob at rob-n-steph.net Sat Aug 29 09:09:18 2009 From: rob at rob-n-steph.net (Robert Lee) Date: Sat, 29 Aug 2009 10:09:18 -0400 Subject: [thelist] interesting traffic change at our website In-Reply-To: <619d00930908282348t3ac42aa6xe0444ba0b749d273@mail.gmail.com> References: <619d00930908282348t3ac42aa6xe0444ba0b749d273@mail.gmail.com> Message-ID: <00a001ca28b2$4f835fe0$ee8a1fa0$@net> It could be legitimate visitors, but it's also very likely that you're being scanned by bots (and not the good kind!). I'd certainly check a few of the IP's on project honey pot, or some of the other sites that work to block malicious bots. http://www.projecthoneypot.org/home.php http://www.kloth.net/internet/badbots.php HTH, Rob -----Original Message----- From: thelist-bounces at lists.evolt.org [mailto:thelist-bounces at lists.evolt.org] On Behalf Of Joel Canfield Sent: Saturday, August 29, 2009 2:49 AM To: thelist at lists.evolt.org Subject: [thelist] interesting traffic change at our website up 'til three days ago, our traffic was almost exclusively US. suddenly over the past three days, a spike in other countries; all very short (under 1 minute) visits out of 154 unique visitors US = 33 Turkey = 12 Vietnam = 12 Saudi Arabia = 8 Brazil = 7 Indonesia, Hong King, Taiwan, Australia, France all had a few; 47 different countries total we have lots of video on the site; does that attract wildly erratic international traffic? From joel at bizba6.com Sat Aug 29 10:57:55 2009 From: joel at bizba6.com (Joel Canfield) Date: Sat, 29 Aug 2009 08:57:55 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: References: Message-ID: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> > > you could use a third party s3 file protection product > s3downloader.com > > close, but playing with their demo, I can't see any way to embed video with it, which is the challenge. which, maybe, I didn't mention earlier. sorry. > If Query String Authentication is too much time and effort > http://www.askmrvideo.com/public/136.cfm > > > obfuscation always looks to me like a call for cracking. I need to protect the original file. it's unlikely anything will every happen, but if some bot started repeatedly downloading one of these 45-minute videos, I could rack up thousands of dollars in charges at Amazon pretty quick. I can't afford the risk. > A Php code sample for query string authentication is here > > http://developer.amazonwebservices.com/connect/thread.jspa?messageID=96679𗦧 > it's probably just me, but that's no clearer than the Amazon tutorials. what I really need is a clearer, simpler Querystring Auth tutorial. Or something. Thanks, though. Still looking. > > From marun2 at gmail.com Sat Aug 29 12:48:59 2009 From: marun2 at gmail.com (Mohan Arun L) Date: Sat, 29 Aug 2009 23:18:59 +0530 Subject: [thelist] Amazon S3 for serving video: restricting permissions Message-ID: >>close, but playing with their demo, I can't see any way to embed video with it, which is the challenge. which, maybe, I didn't mention earlier. sorry. They have this on the web page: "The S3Downloader also has the functionality of Allowing you to directly display html and streaming media files without a download dialog box"... >>obfuscation always looks to me like a call for cracking. I need to protect the original file. it's unlikely anything will every happen, but if some bot started repeatedly downloading one of these 45-minute videos, I could rack up thousands of dollars in charges at Amazon pretty quick. I can't afford the risk. I guess you need custom programming, since my best bet is that this is not part of the standard S3 rest api. Probably choose a one-time token from a list of tokens in the database, pass this token to a script that validates the requester (real visitor username/pass+browser+ip combination), marks it as 'used' in the database so the same token cant be used again, then takes the video file, renames that file with this token, then streams it for viewing, with every view, the filename will keep changing, so a bot cant practically be able to get at the video, but a real visitor can. >>but that's no clearer than the Amazon tutorials.http://developer.amazonwebservices.com/connect/thread.jspa?messageID=96679𗦧 It is kind of easy to understand the flow of the sample code - code creates HTTP headers (esp the Expires: headers) and accesses the file - most likely your code will look very similar - what language are you using? php or python? >>what I really need is a clearer, simpler Querystring Auth tutorial. http://blog.cloudberrylab.com/2009/07/amazon-s3-security-how-to-protect-your.html scroll down until you come to the part about webinars. There are two links to jumpclix, but if you click on either of them, the "s3flowshield" prevents you from accessing the videos - so you may want to actually check out the s3flowshield product. ($97) You could ask the author of this article on twitter if he still has the notes: http://twitter.com/WilsonMattos a search in the s3 developer forum for "protect video" on cursory glance shows some pertinent threads http://developer.amazonwebservices.com/connect/search.jspa?objID=f24&q=protect+video ----------------------------------------------- http://mohanarun.com/29-aug-2009/ ----------------------------------------------- From moseley at hank.org Sat Aug 29 14:30:52 2009 From: moseley at hank.org (Bill Moseley) Date: Sat, 29 Aug 2009 12:30:52 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> Message-ID: <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> On Sat, Aug 29, 2009 at 8:57 AM, Joel Canfield wrote: > > what I really need is a clearer, simpler Querystring Auth tutorial. Or > something. Are you asking how to implement the Query String Auth? Or how to have better control over what can be fetched? Seems like a reasonable solution -- don't cache the web page and generate URLs to Amazon with a life of only a few seconds or so. -- Bill Moseley moseley at hank.org From joel at bizba6.com Sat Aug 29 14:51:09 2009 From: joel at bizba6.com (Joel Canfield) Date: Sat, 29 Aug 2009 12:51:09 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> Message-ID: <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> > > Are you asking how to implement the Query String Auth? Or how to have > better control over what can be fetched? > > Seems like a reasonable solution -- don't cache the web page and > generate URLs to Amazon with a life of only a few seconds or so. > > I'll try to clarify: I'm putting my longer videos (FLV format) at S3 instead of YouTube. Partly because YouTube has a length limit, partly because these are for our members only. The only ways I know to embed a video in a web page include exposing the URL of the video file itself. I don't want to risk the possibility of uncontrolled ad hoc bandwidth charges from Amazon. I want to know that someone watching the video is a paying member, which offsets my costs. Now, HOW I do that, I really don't care. Query String Auth seems like the tool they've provided, but I just plain don't understand their examples: sure, I now have an HTTP connection. Okay, I'm a simple web developer, I don't know what to DO with that HTTP connection. If there's another *definite* method (obfuscation won't do) then that's fine, too. Thanks again; I really appreciate the continued feedback. joel From moseley at hank.org Sat Aug 29 15:20:49 2009 From: moseley at hank.org (Bill Moseley) Date: Sat, 29 Aug 2009 13:20:49 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> Message-ID: <16f65d000908291320pce68798j129cbd640f21b2ad@mail.gmail.com> On Sat, Aug 29, 2009 at 12:51 PM, Joel Canfield wrote: > Now, HOW I do that, I really don't care. Query String Auth seems like the > tool they've provided, but I just plain don't understand their examples: > sure, I now have an HTTP connection. Okay, I'm a simple web developer, I > don't know what to DO with that HTTP connection. Your web pages need to be dynamic (i.e. run code when they are fetched). When an authorized user wants to see a video you create a URL pointing to Amazon that's only valid for a small number of seconds. Embed that URL in your page that links to the video. User's browser fetches the video from Amazon. If they view source and save the URL it won't be much use to them or anyone else because it will be expired. Did you look at any of these example? http://developer.amazonwebservices.com/connect/message.jspa?messageID=132740 I would imagine that PHP or Perl would have modules to build the signed and time-limited URL, but haven't looked. Amazon is a big name space on CPAN from my quick search. -- Bill Moseley moseley at hank.org From joel at bizba6.com Sat Aug 29 15:43:17 2009 From: joel at bizba6.com (Joel Canfield) Date: Sat, 29 Aug 2009 13:43:17 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <16f65d000908291320pce68798j129cbd640f21b2ad@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> <16f65d000908291320pce68798j129cbd640f21b2ad@mail.gmail.com> Message-ID: <619d00930908291343s7a140463kbd67bde730ba8394@mail.gmail.com> > > Did you look at any of these example? > > > http://developer.amazonwebservices.com/connect/message.jspa?messageID=132740 > > I would imagine that PHP or Perl would have modules to build the > signed and time-limited URL, but haven't looked. One of those examples is very much like a link Mohan sent earlier ( http://developer.amazonwebservices.com/connect/thread.jspa?messageID=96679) I missed it, looking at the other resources. Digging back into that example, I'm now at the point that it doesn't like hash_hmac for some reason. I get the error Fatal error: Call to undefined function: hash_hmac() in video.php on line 8 This page seems to indicate it's part of PHP: http://us.php.net/manual/en/function.hash-hmac.php so I'm apparently missing something about what PHP is or is not doing. (I've worked almost entirely in ASP for the past decade, so although I'm okay with scripting concepts, I'm an absolute neophyte with PHP.) Here's what I've got in the page (there is literally nothing on this page other than this, so if I'm missing something obvious, please say so) Authenticated Link"; ?> From joel at bizba6.com Sat Aug 29 16:55:31 2009 From: joel at bizba6.com (Joel Canfield) Date: Sat, 29 Aug 2009 14:55:31 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <619d00930908291343s7a140463kbd67bde730ba8394@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> <16f65d000908291320pce68798j129cbd640f21b2ad@mail.gmail.com> <619d00930908291343s7a140463kbd67bde730ba8394@mail.gmail.com> Message-ID: <619d00930908291455k61539391q30c0a5fc0aac1a4c@mail.gmail.com> > > I missed it, looking at the other resources. Digging back into that > example, I'm now at the point that it doesn't like hash_hmac for some > reason. I get the error > > Fatal error: Call to undefined function: hash_hmac() in video.php on line 8 > well, my answer is, the server Crystal Tech has me on is PHP4. here's where it's fun: their tech suggested, without any warning, questions, or (apparently) thought, that I simply ask to be 'upgraded' to PHP5. well, what 'upgrade' meant, after I asked a number of questions, was that they'd move all my hosting to another server. with a new IP address. which would require updating my DNS at my registrar. "Oh, you're not using our DNS? oh, well, huh . . . um . . . " Joel: what other questions should I be asking that you're not taking into account? Cody Mejia: Well buddy you wanted to use hash_hmac and I'm trying to give you a solution if you wanted to use it and it requires PHP5. Cody Mejia was more than happy for every single one of my sites (mine and my clients') to drop like a rock when the IP address changed because he had a flippant answer off the top of his head, rather than asking the simple question "do you use Crystal Tech's DNS?" before he recommended a fundamental sweeping change. yes, I know; it's my fault for using them. that's why I'm looking for a web admin who will insulate me from things I don't know and don't care about. of course, when I asked him what other risks were involved, he never came back to the chat window, and I gave up waiting. so now, I'm either stuck with PHP4, or stuck with the potential unknown risks of moving my entire site. which, now that I think about it, sounds great. just, not with Crystal Tech. joel From hassan.schroeder at gmail.com Sat Aug 29 17:17:32 2009 From: hassan.schroeder at gmail.com (Hassan Schroeder) Date: Sat, 29 Aug 2009 15:17:32 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <619d00930908291455k61539391q30c0a5fc0aac1a4c@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> <16f65d000908291320pce68798j129cbd640f21b2ad@mail.gmail.com> <619d00930908291343s7a140463kbd67bde730ba8394@mail.gmail.com> <619d00930908291455k61539391q30c0a5fc0aac1a4c@mail.gmail.com> Message-ID: <4eedb92a0908291517y7301594eq89a2b3999736aa62@mail.gmail.com> On Sat, Aug 29, 2009 at 2:55 PM, Joel Canfield wrote: > well, my answer is, the server Crystal Tech has me on is PHP4. > > Dude, life's too short -- why don't you lease a server from someplace like RackSpace and, if you're not inclined, put someone on retainer to handle installing/maintaining PHP, etc.? Having to depend on someone who does not see her or his interests as being aligned with yours is not good for you or your business. -- Hassan Schroeder ------------------------ hassan.schroeder at gmail.com twitter: @hassan From joel at bizba6.com Sat Aug 29 17:22:26 2009 From: joel at bizba6.com (Joel Canfield) Date: Sat, 29 Aug 2009 15:22:26 -0700 Subject: [thelist] Amazon S3 for serving video: restricting permissions In-Reply-To: <4eedb92a0908291517y7301594eq89a2b3999736aa62@mail.gmail.com> References: <619d00930908290857m2c3ac157y5a2c84c76a57c041@mail.gmail.com> <16f65d000908291230l3f285309q2c2a95e26cfa1e37@mail.gmail.com> <619d00930908291251g7edf0f92i8286474882cc2e68@mail.gmail.com> <16f65d000908291320pce68798j129cbd640f21b2ad@mail.gmail.com> <619d00930908291343s7a140463kbd67bde730ba8394@mail.gmail.com> <619d00930908291455k61539391q30c0a5fc0aac1a4c@mail.gmail.com> <4eedb92a0908291517y7301594eq89a2b3999736aa62@mail.gmail.com> Message-ID: <619d00930908291522x15578409r13f881b0fab22177@mail.gmail.com> > > Dude, life's too short -- why don't you lease a server from someplace > like RackSpace and, if you're not inclined, put someone on retainer > to handle installing/maintaining PHP, etc.? > > money. I don't have the funds, today, to start paying 5-10 times what I'm paying now. I know that's a bad answer. I'm trying to change it. Because, you're absolutely right; I need to find a professional to manage this and hand off the stuff I just don't want any more.