Neil Turner's Blog - A long-running blog about technology and randomness

May 19, 2013
by Neil T
0 comments

Two factor authentication

Back in August I wrote about how to enable two factor authentication across many web sites. Well, at the time, this was Google, Yahoo!, Facebook and Battle.net, although Dropbox was working on it.

I’ve now updated that blog post. Dropbox has now launched two factor authentication, and I’ve been able to add Microsoft, Apple, WordPress and App.net to that list. Which means that most of the big sites that lots of people use support it, and means that geeks like me who don’t mind the extra step should be able to keep our accounts more secure.

There are, however, a couple of notable absences:

Twitter

Twitter is actually quite lax for security. By default, you can instigate a password reset for someone by simply entering their username (which is public); you have to go into your settings to force Twitter to require your email address or phone number. And the stakes are high – the ‘Syrian Electronic Army’ has been hacking many Twitter accounts lately, including the Associated Press which caused a brief stock market wobble. Although their attack method seems to be simple social engineering tactics.

Evernote

Evernote had a major security breach in March, which saw every users passwords being reset. I seem to recall Evernote stating that two factor authentication was on the cards, in case such a thing happened again, but there haven’t been any updates since.

I hope that Evernote and Twitter follow the leads of others and improve the security of their accounts soon. There are people with a lot of time and reputation invested in their user accounts who can’t afford to lose them.

May 18, 2013
by Neil T
0 comments

Links from Delicious for May 18, 2013

Here are the articles or web sites that I’ve found this week and linked to on my Delicious Bookmarks:

Welcome to Google Island
‘Welcome to Google Island’, a ‘what if’ short story
Everything Apple Needs to Introduce at WWDC to Appease the Internet — carpeaqua by Justin Williams
The 50 things Apple needs to announce at WWDC to appease the internet. (No pressure, of course)
Cover Story: Daft Punk | Features | Pitchfork
This Pitchfork interview with Daft Punk is worth looking at for the awesome HTML5 effects
BBC News – Isle of Man gay couple refused rental agreement
A gay couple on the Isle of Man were refused a rental agreement for a house because of their sexual orientation
BBC News – Pre-exam breakfasts sent to schools to boost results
10,000 free breakfasts are being provided to schoolchildren taking exams to help them concentrate

Digest powered by RSS Digest

May 17, 2013
by Neil T
0 comments

Automatically updating avatars

Many web sites let you represent yourself using a profile picture, or avatar, as well as your username or real name. Last year I decided to change all of my avatars to one default picture of me (this photo of me wearing a fez). This got very repetitive after a while as there doesn’t seem to be a way to mass-update avatars on lots of different web sites.

There are a couple of minor workarounds. You can use IFTTT to synchronise your Facebook and Twitter profile pictures with this recipe. It’s one-way, though – you have to update your Facebook avatar to then have your Twitter avatar changed.

And there’s Gravatar, which aims to be a ‘Globally Recognised Avatar’ and is supported by many sites, including this one. But not all sites use it, and it’s a shame that some don’t have a ‘just use my Gravatar’ option rather than inviting you to upload an image.

This means that I would still have to manually change my Flickr, LinkedIn, Microsoft, Google, app.net, Instagram, Foursquare, Pinterest and last.fm avatars, plus those on any forums I’ve registered on and any other sites that I’ve forgotten. In fact, despite me merging my Microsoft and Skype accounts, the two still seem to have separate avatars.

It would be nice if someone could create a site that would be able to automatically update your avatar on multiple sites, or at least offer a landing page with quick links to the relevant settings pages to update them. And, if being able to change your avatar is something that these sites include in their APIs, it would be nice if IFTTT supported them like it does with Facebook and Twitter. But for now, if you want to have an image change, there’s a lot of work involved.

May 16, 2013
by Neil T
0 comments

Amazon’s UK tax avoidance

Note: I am an Amazon Associate and receive commission for referrals.

Amazon is in the news again, as it only paid £2.4 million in tax in the UK last year, on sales of £4.3 billion. This is only slightly up on the £1.8 million it paid last year – something I mentioned in my Boycotting Google blog post in December. It means that Amazon effectively paid less than 0.1% tax, and it actually received government grants totally £2.5 million so it effectively paid nothing.

What Amazon doing is not illegal. ‘Avoiding’ tax by exploiting loopholes (as opposed to ‘evading’ tax) may be seen as morally wrong, but it isn’t illegal. Most of Amazon’s business is channelled through Luxembourg where the rate of corporation tax is lower – around 22%, rather than 28% in the UK (according to taxrates.cc). Other companies like Google and Apple channel their profits through Ireland, where the corporation tax rate is only 12.5%.

I don’t want to defend Amazon but I do have a couple of issues with how the news has been reported. Firstly, £2.4 million is still a lot of money, and far more than what most people will see in their lifetime. I’m pleased that the article states this as a percentage but it would be nice if stated what the normal corporation tax rate is.

Secondly, what would be better is if someone could calculate what Amazon should be paying if it was a wholly UK-based operation. I’m assuming it should be around £1 billion, which would be a nice windfall for the exchequer.

Of course, none of the loopholes that Amazon, and others, are using should be allowed. The government are making the right noises but more needs to be done. It’s not fair that big, multi-national companies can get out of paying their taxes when smaller have to pay.

May 15, 2013
by Neil T
0 comments

App of the Week: Subtitles

Sometimes the best apps are the least complicated ones, and Subtitles is one such app. It does one thing, and it does it very simply: it finds closed caption subtitles for your video files.

The main window is shaped like a clapperboard. Drag and drop your video files onto it, and Subtitles will search OpenSubtitles.org for a match. If it is successful, then it will create a .srt SubRip file in the same folder as your video file with the same file name. Many media players like VLC will detect the .srt file when you open video files in them, and so the closed captions should automatically appear when you play the file.

And that’s basically it – there’s no fancy extra features, just a plain, simple app. You can, however, use the Preferences to manage with languages you would like the closed captions to use, and you can select both a primary and secondary language if you want more than one.

Subtitles doesn’t modify the original video file in anyway. Whilst modern video file container formats, like Matroska and MP4, can support closed captions within the video file itself, older ones like AVI weren’t designed to. Subtitles therefore keeps it simple by using a separate file for the subtitles, but, if you wish, you can use a tool like mkvmerge to combine them.

Subtitles is free. It was designed for Mac OS X, but there is a ported version for Windows available as well.

May 14, 2013
by Neil T
1 Comment

Paris cultural observations

We’re back from our Parisian honeymoon. We had a great time and I have over 200 photos to sort and upload to Flickr at some point.

Whilst I could write a detailed review of everything we did whilst in Paris, instead I’ll just cover the things that I found interesting and different. A mixture of advice and observations, if you will.

General observations about Paris and France

Unlike in the UK, where the green man means it’s usually safe to cross, in France it ‘may’ be safe to cross as traffic may still turn whilst you are crossing.
VE Day is a public holiday each year, on the 8th of May.
A service charge is included in all restaurant bills, so tipping isn’t strictly necessary. Rounding to the nearest €5 or €10 is considered polite for good service though.
Raisin swirl pastries are known as ‘Escargots aux raisins’, literally ‘snails of raisins’.
Around the Sacré-Cœur in Montmatre (but elsewhere as well) you may see the ‘String Men’, who have pieces of string in their hands. It’s a scam and you should walk away and ignore them. They are very persistent though.
Unlicensed street vendors are very prevalent in the tourist areas of Paris, and like the string men can be very persistent. Don’t buy from them.
Wifi hotspots called ‘Free Wifi’ aren’t free. ‘Free’ is a French ISP – you need to look for ‘Wifi Gratuit’ for hotspots that do not cost money to use.
Chartier is well worth visiting – it’s a late 19th-century dining hall that serves very good and very cheap (by Paris standards) food. We walked straight in on a Tuesday night but the queues can be 100 people deep at other times.
You now have to pay to get onto the roundabout where the Arc de Triomphe is.
The Moulin Rouge is not as interesting as it’s depiction in the Baz Luhrmann film. It’s also surrounded by sex clubs, adult shops, and the actually quite interesting Musée de l’Érotisme.
The original model for the Statue of Liberty is in a corner of the Jardin de Luxembourg. It’s a lot smaller than the one in New York.

The Louvre

It’s closed on Tuesdays.
The audio guides use Nintendo DS handheld consoles.
But rather than hiring an audio guide, you can download a smartphone app and use your own phone instead, if you prefer. There’s no wifi on-site though, so best to do it before you set off.
If it’s raining, rather than queue outside to get in, you’re better off going into the Carousel de Louvre shopping centre which is under the Arc de Triomphe de Carousel. It’s also connected to the Palais Royale – Musée de Louvre Métro station, so you can get from the Métro to the Louvre without needing to go outside.
Good luck with getting a good photo of the Mona Lisa – it’s a small painting and we had at least 100 other people jostling to get a picture. It’s pretty much in its own room now.
The museum was recently closed for a day after staff went on strike over pickpockets. As such, be careful with your valuables. Also, the French don’t have a separate word for ‘pickpocket’ so they just use the English word.

The Musée d’Orsay

It used to be a railway station. There’s still an RER station underneath but the nearest Métro station is about 200 metres away.
Photography is prohibited everywhere inside. I did see quite a few people taking pictures regardless, and there are loads of pictures on Foursquare, but I did also see one person being told off for taking photos. Interesting related article on the subject.
Many of the audio guides are iPod Touch devices, albeit ones that have been inserted inside a cheap, tacky-looking plastic case which covers the home button.
The café on the top floor is good and is located behind one of the two huge clocks. It is pricey but the mille-feuile is to die for.
There are a small number of Vincent Van Gogh paintings on level 2. ‘Exploding TARDIS‘ sadly isn’t one of them.

Paris Metro

There are very few escalators and lifts at stations. You’ll be going up and down stairs most of the time.
The Navigo card is the Parisian equivalent of London’s Oyster Card, but it isn’t promoted to tourists. We decided to stick with buying a ‘carnet’ of 10 tickets at a time, which is slightly cheaper than buying them individually.
Mobile phone coverage is available at most stations and even on the trains, although frequently it’s only 2G and not 3G.
Some lines, like 1 and 14, have modern, fully-automated trains, and platform edge doors like on London’s Jubilee Line, but some lines have trains that date from the 1960s and require you to turn a handle to open the doors. And on many of the older trains, the doors unlock a couple of seconds before the train has come to a halt, so it’s possible to alight from a moving train.
Line 6 of the Metro runs on an elevated section down the middle of a wide street to the west of Paris, near the Eiffel Tower. I gather this happens on the New York Subway from time to time as well.
Generally the ticket barriers only scan your ticket to enter the Metro, not to leave.
The RER is a bit like Thameslink (and Crossrail when that opens in London), in that it’s actually a full rail service that happens to pass through the centre of Paris. Some of the trains are double-deckers. Ticketing is fully-integrated with the Metro.
Some Metro trains run on rubber tyres, rather than metal wheels. It gives a smoother ride.

May 11, 2013
by Neil T
0 comments

Links from Delicious for May 11, 2013

Here are the articles or web sites that I’ve found this week and linked to on my Delicious Bookmarks:

Start a Simple Web Server from Any Directory on Your Mac
Run a simple web server for testing web sites using Python on OS X
this series of illustrations
Modernised paintings of historical people. Hipster Shakespeare and QE1 as Catherine Tate
On yer bike! New York Nimbys saddle up to fight cycle-share scheme
New York is getting Boris Bikes, but the locals aren’t too happy about it

Digest powered by RSS Digest

May 8, 2013
by Neil T
2 Comments

App of the Week: tooPassword

Note: This post is pre-recorded as Neil is on honeymoon.

This week I’m reviewing an app I found out of necessity. As you may know I use AgileBits’ 1Password to store and synchronise my passwords between my computers and iPhone. A couple of weeks ago I got an iPad, and, unfortunately, 1Password 4 for iOS requires iOS 6, which my first-generation iPad isn’t capable of running. Though the older 1Password Pro 3.x would work, it’s no longer available to download.

Thankfully, there’s an app called tooPassword. tooPassword is compatible with the Agile Keychain used by 1Password, and will run on iOS 5.x devices like my old iPad. Like 1Password, it works with Dropbox, so it’s effectively a drop-in replacement. You can also synchronise a keychain via iTunes as well, if you would prefer. There are also options to allow passwords that have been copied to the clipboard to be wiped after a certain amount of time has elapsed.

The major difference between 1Password and tooPassword, is that tooPassword only offers read-only access to your keychain. In other words, you can’t add logins or edit details. You’ll need to use one of AgileBits’ official 1Password apps to make changes. This is fine for me as I don’t usually create or change logins on my iPhone or iPad, but it is worth bearing in mind. The other limitation I found is that tooPassword occasionally showed me an old password, rather than a current one. This may be a quirk in how password histories are stored in the Agile Keychain.

One key advantage of tooPassword is that it is significantly cheaper than the official 1Password app, which normally costs £12.99. Therefore, if you don’t mind the occasional quirk and the fact that it’s read-only, you can save yourself £11 by buying tooPassword instead.

tooPassword is £1.99 from the App Store, and is a universal app for iPhone, iPad and iPod Touch.

May 7, 2013
by Neil T
0 comments

app.net Domain Verification

Note: This post is pre-recorded as Neil is on honeymoon.

Last week, app.net announced Domain Verification. In essence, this allows an app.net user to verify the domain listed as their home page on their app.net profile. It’s similar to verified accounts on Twitter, where Twitter will add a blue ‘verified’ badge to official accounts belonging to celebrities or people who are at risk of impersonation.

The difference with Twitter is that anyone who owns their own domain can get verified on app.net. This includes people like me, so on my app.net profile I now have a green tick against my homepage URL. Twitter, on the other hand, chooses accounts to be verified and generally you need at least a few thousand followers. With less than 500 followers and my non-celebrity status, it’s unlikely that Twitter would select me to have a verified account. Although they do get it wrong sometimes.

The upshot of my domain verification is that there is a big fat ‘Follow me on app.net’ button on the sidebar, which maintains my verified status. If I remove that, then I’ll revert to being just a regular unverified user. You can, however, go for a more subtle link using the advanced settings when verifying your domain.

On the one hand I think it’s good that app.net allows all of its users to get verified if they want to – even users like me who have a free account. However, app.net users still only number in the tens of thousands and so there are unlikely to be many celebrities around.

May 6, 2013
by Neil T
0 comments

10 tips for planning your wedding

Note: This post is pre-recorded as Neil is on honeymoon.

There’s a quote by Irish comedian Ed Byrne on the lines of “The best thing about being married is that you don’t have to plan a wedding”. Whilst our experience was probably not as bad as his, your typical wedding will have several elements, all of which need organising separately, and it can be a big thing to take on.

Therefore, based on mine and Christine’s experience as a recently married couple, here are 10 things that we were advised or found out during the planning of ours.

Continue Reading →