Sign in or Join FriendFeed
FriendFeed is the easiest way to share online. Learn more »
Tim Jarrett

Tim Jarrett

TwitterBlogFlickrYouTubedelicious more »
RT @MarkKriegsman: FYI "Grackle68k" = new Twitter client for 68K Macs w/ System 6 through Mac OS 9. http://www.retards.org/project... <- #whaa #brainhurts
yesterday from Twitter - Comment - Share
links for 2009-11-17 - http://www.jarretthousenorth.com/2009...
Tuesday from Jarrett House North - Comment - Share
Shadegg On 9/11 Trials: What If Bloomberg's Daughter Gets Kidnapped? | TPM LiveWire - http://tpmlivewire.talkingpointsmemo.com/2009...
Tuesday from delicious - Comment - Share
Lovely. Glad that we're bravely facing adversity. - Tim Jarrett
H1N1: It's Pronounced "Hiney" - Boing Boing - http://www.boingboing.net/2009...
Tuesday from delicious - Comment - Share
Sounds much better, doesn't it? Hiney Flu. - Tim Jarrett
Star Wars: Trench Run game released for iPhone | The Loop - http://www.loopinsight.com/2009...
Tuesday from delicious - Comment - Share
Looks like I've found my next time waster. - Tim Jarrett
The Lung Flute: A Sort of Gross (But Important) Medical Innovation - Boing Boing - http://www.boingboing.net/2009...
Tuesday from delicious - Comment - Share
I was thinking "Ig Nobel" material until I read the part about being used for TB testing. Then I decided this guy has a lock on next year's medicine award. - Tim Jarrett
Bible passages that conflict with modern morality - http://www.religioustolerance.org/imm_bib...
Tuesday from delicious - Comment - Share
Interesting discussion about parts of the Bible that challenge faith when viewed from modern perspectives. - Tim Jarrett
Web Font Specimen - http://webfontspecimen.com/
Tuesday from delicious - Comment - Share
Interesting - an adaptable type specimen sheet for proofing web fonts. - Tim Jarrett
@frama_c Do you mean this A3? http://domino.watson.ibm.com/comm...
Tuesday from Twitter - Comment - Share
Glee Club history: The mysterious A. L. Hall-Quest - http://www.jarretthousenorth.com/2009...
Tuesday from Jarrett House North - Comment - Share
Last thought on this: finding private API usage is trivial. Finding sensitive data exfiltration is not & requires real static analysis.
Monday from Twitter - Comment - Share
@mdhughes I said, without source. Checkmarx, Coverity, DMS, Fortify, GrammaTech, Klocwork, Ounce all analyze source. Veracode does binary.
Monday from Twitter - Comment - Share
@DavidWLocke Names of external functions called by an application are listed in the app's import table. (cont'd)
Monday from Twitter - Comment - Share
@mdhughes You're right, there are lots of ways to find things in binaries. dtrace is one of them, but it's a dynamic tool, not static.
Monday from Twitter - Comment - Share
@DavidWLocke (cont'd) You don't need to know the arguments to know if an API is being called, just that the function is being called.
Monday from Twitter - Comment - Share
@mdhughes ...and the claim I was originally responding to was that Apple was using static analysis tools on App Store submissions.
Monday from Twitter - Comment - Share
@mdhughes A dev can use one of those tools to analyze code he wrote, but can't find flaws in libraries he didn't.... (cont'd)
Monday from Twitter - Comment - Share
@mdhughes Now, if you're saying Apple has written their own static binary analyzer that is not commercially available, that's another thing.
Monday from Twitter - Comment - Share
@mdhughes (cont'd) ... and Apple can't use those tools to find flaws in app store binaries they didn't write, is all I was trying to say.
Monday from Twitter - Comment - Share
@mdhughes I'm unaware of another commercial offering that does static binary analysis, with data & control flow, w/o source. Enlighten me.
Monday from Twitter - Comment - Share
links for 2009-11-16 - http://www.jarretthousenorth.com/2009...
Monday from Jarrett House North - Comment - Share
@DavidWLocke Apple may be performing some level of analysis on the binary (checking strings to find called functions). Prob not reversing.
Monday from Twitter - Comment - Share
Two cheers for Google Books | Digital Media - CNET News - http://news.cnet.com/8301-10...
Monday from delicious - Comment - Share
The problem with the original Google Books plan was "the agreement gives too much market power to Google over out-of-print books. How's that again? Out-of-print books, by definition, are those for which there is no market today, nor likely to be one any time in the future." - Tim Jarrett
Conservatives Say Gitmo Detainees Would Be Fine In IL Prison, Warn GOP Of 'Scaremongering' | TPMDC - http://tpmdc.talkingpointsmemo.com/2009...
Monday from delicious - Comment - Share
As John Gruber wrote, I never thought I'd say it but I agree with Grover Norquist. - Tim Jarrett
And we haven't heard of anyone doing static binary on Objective C. I'd be interested to be proven wrong on this.
Monday from Twitter - Comment - Share
Of course, what is probably going on here is that someone has confused "static analysis" with "looking at the strings in the binary."
Monday from Twitter - Comment - Share
@chriseng Yup. Which is why I think calling it "static analysis" is a stretch at best, misleading at worst.
Monday from Twitter - Comment - Share
Re: Apple's supposed "static analysis" capability allowing them to find private APIs, as claimed here (http://bit.ly/4pddtm)....
Monday from Twitter - Comment - Share
Static BINARY analysis (not requiring source) is real on some languages (Java/C#). But only @Veracode can do it on C/C++ binaries.
Monday from Twitter - Comment - Share
Jimmy Wales: AP's 'Landing Pages' a Good, if Late, Idea (Poynter Online) - http://www.poynter.org/column...
Monday from delicious - Comment - Share
Jimmy Wales schools Poynter in how Wikipedia and the Internet work. Funny read. Best quotation: "There is no move to restrict editing on Wikipedia pages of living people. The rest of your question is negated by this fact." - Tim Jarrett
Best of week from Tim Jarrett - Older items »
Other ways to read this feed:Feed readerFacebook