Some Important Portals & their Founders -

Some Important Portals & their Founders -

1. Google— Larry Page & Sergey Brin

2. Facebook— Mark Zuckerberg

3. Yahoo— David Filo & Jerry Yang

4. Twitter— Jack Dorsey & Dick Costolo

5. Internet— Tim Berners Lee

6. Linkdin— Reid Hoffman, Allen Blue& Koonstantin Guericke

7. Email— Shiva Ayyadurai

8. Gtalk— Richard Wah kan

9. Whats up— Laurel Kirtz

10. Hotmail— Sabeer Bhatia

11. Orkut— Buyukkokten

12. Wikipedia— Jimmy Wales

13. You tube— Steve Chen, Chad Hurley & JawedKarim

14. Rediffmail— Ajit Balakrishnan

15. Nimbuzz— Martin Smink & Evert Jaap Lugt

16. Myspace— Chris Dewolfe & Tom Anderson

17. Ibibo— Ashish Kashyap

18. OLX— Alec Oxenford & Fabrice Grinda

19. Skype— Niklas Zennstrom,JanusFriis & Reid Hoffman

20. Opera— Jon Stephenson von Tetzchner & Geir lvarsoy

21. Mozilla Firefox— Dave Hyatt & Blake Ross

22. Blogger— Evan Willam Belli

How to disable Shared Endorsement Ads on Google

by Martin Brinkmann on October 11, 2013 in Google 7

Your Google likes and comments may soon be used by companies for advertisement purpose according to a Terms of Service update the company released earlier today (for a non-lawyer speak summary check here).

This feature may attach your +1s, comments that you have left on Google properties, and people that you follow as endorsements to advertisements.

If you liked a coffee shop around the corner, a movie that you watched in cinema, or a naughty sex toy that you bought on Amazon, then your friends may soon find your photo and name attached to advertisement or listings on Google for that product.

Google limits the exposure of ads to the same visibility level that you have set initially. If you have shared a comment with your friends, only those friends will see the endorsement while none-friends won't.

This means that if you make a public statement, it may be used publicly as well.

If you think sponsored stories on Facebook now, you are not far off. The social networking site launched a similar feature some time ago where your information may be used on the site to promote contents.

Disable Shared Endorsements on Google

The core difference between Google's and Facebook's implementation is that Google has created an opt-out for its users. This means that you have two options to avoid being used in advertisement on Google:

1. Avoid sharing, liking or commenting on Google sites.
2. Opt-out of Shared Endorsements.

The first option may not be that practicable, while the second takes care of the feature altogether.

Let me show you how you can opt-out of Shared Endorsements:

1. Visit Google's Shared Endorsements website.
2. Note that you will be asked for your password even if you are currently signed in to your Google account. This is a security precaution and designed this way by Google.
3. The page explains what the feature is, gives examples of how advertisement can look like, and provides you with an opt-out form at the bottom.
4. Make sure that the "Based upon my activity, Google may show my name and profile photo in shared endorsements that appear in ads" check box is not checked. If it is checked, remove the checkmark from it and click Save afterwards.

Shared Endorsements opt-out form

Note: Users under 18 years of age are not affected by Shared Endorsements. While they may see them on Google properties, their profile photo and name won't be used in ads.

Users who previously opted out of their +1s being shown in ads, may notice that the Shared Endorsements preference is disabled by default for them.

Update: As John pointed out in the comments, you may also want to check the Shared Endorsements settings on Google Plus. Here you need to open the Settings page of Google Plus and locate the Shared Endorsements setting near the top.  Make sure it is set to off. It if is set to on, click on edit to change that. You will be taken the the main page linked above where you can disable the feature.

Google Chrome saves sensitive data entered on https websites in plaintext

by Martin Brinkmann on October 12, 2013 in Google Chrome 9

Back in Summer 2013 Google was criticized for storing user login information -- username and password -- in plaintext in the web browser without any sort of protection. For some, this was a critical security risk that could easily have been avoided, for instance by implementing a master password protecting the data.

Others -- and Google -- pointed out that local access was required to access the data, and if local access was granted, the computer was compromised anyway opening other attack vectors as well.

A few days ago, security research company Identity Finder, discovered another -- related -- issue in Google Chrome. According to the company's findings, Chrome stores sensitive information, entered on https websites and services, in plaintext in the browser cache.

Note: While many believe that browser's do not cache https pages and data because of the secure nature of the connection, it needs to be noted that https contents may be cached. This depends solely on a site's or server's response headers (that are transferred to the web browser).  If the caching headers allow the caching of HTTPS contents, web browsers will do so.

Chrome and sensitive data

Identity Finder discovered that Chrome was storing a range of sensitive information in its cache including bank account numbers, credit card numbers, social security numbers, phone numbers, mailing addresses, emails and more.

The company confirmed that these information were entered on secure websites, and could easily be extracted from the cache with search programs that scan any type of file for plaintext data.

The data is not protected in the cache, which means that anyone with access to it can extract the information. This does not necessarily mean local access, as malicious software running on a user's computer, and even social engineering, may yield the same results.

Handing over the computer to a computer repair shop, sending it in to the manufacturer, or selling it on eBay or Craigslist may provide third parties with access to sensitive information stored by the browser.

Protection

Google Chrome: clear browsing data

How can you protect your data against this? Google wants you to use full disk encryption on your computer. While that takes care of the local access issue, it won't do a thing against malware attacks or social engineering.

It is like saying that website operators may save passwords in plaintext in the database, as the battle is lost anyway if someone gains access to the server locally or remotely.

In regards to Chrome, the only option that you have is to clear the cache, autofill form data and browsing history regularly and preferably right after you have entered sensitive information in the browser.

You cannot automate the process using Chrome alone, but need a third party tool or extension to clear the data when you close the browser automatically.

Other browsers

Identity Finder only analyzed the cache of Google Chrome and if you are not using the browser, you are probably wondering if your browser stores sensitive information in plaintext as well.

Firefox, almighty when it comes to customizing the browser, lets you disable SSL caching in the advanced configuration.

• Type about:config in the address bar and hit enter.
• Confirm you will be careful if this is your first visit to the page.
• Search for browser.cache.disk_cache_ssl
• Set the preference to false with a double-click on its name to disable SSL caching.
• Repeat the process if you want to enable it again.

Firefox will use the computer's memory to cache files, which means that the information are automatically deleted when Firefox closes, and never recorded to disk.

If you do not want that either, set browser.cache.memory.enable to false as well.

How to set a fixed video volume on YouTube

by Martin Brinkmann on October 12, 2013 in Music and Video 3

I recently noticed a strange behavior on YouTube while playing videos in the Google Chrome web browser. While I was able to change the volume using the slider of the video player interface, I noticed that the volume change would not stick under certain circumstances.

While it remained set to the selected volume level for as long as I remained on the page -- which included playing other video that were linked on that page, for instance in the recommended section -- it would revert to a 100% volume setting the moment I'd leave that page.

I have tested this numerous times and the volume level would always reset itself, Even a page reload of the video that I was watching would reset it.

I tried resetting clearing cookies and other site related bits of data, but to no avail. When I switched web browsers, I noticed that other browsers were not behaving that way. YouTube remembered the volume setting in Internet Explorer and Mozilla Firefox.

Fixing YouTube's video volume issue

The following explanation provides you with the fix for the issue that I was facing, and then later on with a general tip that allows you to set the volume independently on YouTube.

YouTube saves the volume information in a cookie, which means that the information are lost when the cookie gets deleted or replaced with a new one.

I noticed a cookie icon with a red x next to it in Chrome's address bar.

When you hover over it, you receive information that "this page was prevented from setting cookies".

I have configured Google Chrome to block third party cookies and site data, and the cookie that YouTube sets when you change the volume seems to fall in that category. I'm not 100% sure why it would, but after I disabled the option YouTube would remember the volume setting again.

You have two options to deal with the issue:

1. Allow all third-party cookies and site data.
2. Add YouTube to the exceptions list.

Both settings are configured on the chrome://settings/content page. Just load it in your web browser and locate the cookies settings.

Google Chrome cookie settings

Either uncheck "Block third-party cookies and site data" or, click on Manage exceptions here to add an exception. I would suggest you add an exception instead so that you can block third-party cookies on other sites.

cookie exceptions on YouTube

If you want to add an exception so that YouTube can set third-party cookies and site data, add [*.]youtube.com to the list of exceptions.

Second option

A userscript like YouTube Center can set the volume for videos on YouTube independently of cookie settings. Just install it in Google Chrome, click on the settings button on YouTube that it adds, and select Player > Volume to enable the volume control there and set a default volume that you want for all videos on the site.

You can install the extension by downloading it first, opening Chrome's extension page then (chrome://extensions/), and dragging & dropping the downloaded extension to it to start the installation dialog.