Googland |
- [G] More Building Maker cities and a new competition, too
- [G] Happy Birthday AdSense
- [G] Webinar: Implementing the +1 Button
- [G] New Interface Wednesdays: Multi-dimension reporting
- [G] Protecting users from malware hosted on bulk subdomain services
- [G] Trying to end mixed scripting vulnerabilities
| [G] More Building Maker cities and a new competition, too Posted: 19 Jun 2011 05:25 AM PDT Google LatLong: More Building Maker cities and a new competition, too[Cross-posted from the SketchUp Blog] It's a great day for the citizens of Argentina -- and for Canadians in the nation's capital. We've released new Building Maker imagery in six new cities:
...but that's not all! To help these cities get modeled, we're having the first ever modeling competition for Building Maker. Starting today, you can create models in these six cities to win prizes in two different categories: Best Model and Most Models. The first place prize is a GPS-enabled digital camera; second place is a Building Maker shirt; and third is a Google travel mug. Have fun!  URL: http://google-latlong.blogspot.com/2011/06/more-building-maker-cities-and-new.html       |
| Posted: 18 Jun 2011 03:26 PM PDT Inside AdSense: Happy Birthday AdSenseAdSense is turning eight years old tomorrow! Growing to over two million publishers worldwide since our launch in 2003, we want to thank all of you for helping us expand and thrive.As we celebrate AdSense, we want to share our appreciation for all the AdSense publishers whose innovation has made the last eight years so successful. The Google Display Network is comprised of many AdSense publishers like you: those who offer useful and engaging content for your community and serve as an effective channel for advertisers to connect with audiences. For the last eight years, we've relied on your product feedback to help us improve, your success stories to inspire us, and your content to enhance the ecosystem of the world wide web. We look forward to growing older and wiser with all of you for many more years to come! Posted by Jamie Firkus - Inside AdSense Team    URL: http://feedproxy.google.com/~r/blogspot/tuAm/~3/4yERqdD3fqM/happy-birthday-adsense.html   |
| [G] Webinar: Implementing the +1 Button Posted: 18 Jun 2011 03:25 PM PDT Inside AdSense: Webinar: Implementing the +1 Button(Cross-posted on the Webmaster Central blog)A few weeks ago, we launched the +1 button for your site, allowing visitors to recommend your content on Google search directly from your site. As people see recommendations from their friends and contacts beneath your site in search results, you may see more, better qualified traffic from Google. But how do you make sure this experience is user friendly? Where should you position the +1 button? How do you make sure the correct URL is getting +1'd? On Tuesday, June 21 at 3pm ET, please join Timothy Jordan, Google Developer Advocate, to learn about how to best implement the +1 button on your site. He'll be talking through the technical implementation details as well as best practices to ensure the button has maximum impact. During the webinar, we'll review the topics below:
Posted by Kari Wilson - Product Marketing Manager   URL: http://feedproxy.google.com/~r/blogspot/tuAm/~3/ZZNpKDqaRuM/webinar-implementing-1-button.html   |
| [G] New Interface Wednesdays: Multi-dimension reporting Posted: 18 Jun 2011 03:25 PM PDT Inside AdSense: New Interface Wednesdays: Multi-dimension reporting We've been listening to your feedback for more reporting and better insights into your data and are pleased to share a powerful new feature called multi-dimension reporting. You can now add dimensions to your performance reports to sort and view data across multiple dimensions including ad units, ad sizes, and countries.This new feature allows you to add up to three dimensions to your reports, including viewing a channel by date or an ad unit by targeting type. To add a dimension when you create or edit a report, click 'Add dimension' and select a dimension. The dimension selected is added to the table, so you will now see two dimensions. To add another dimension click 'Add dimension' and select again. You can also change and remove a dimension by clicking the drop-down for the dimension you want to change or remove.  This reporting capability is just one of many improvements we're making to the new AdSense interface as we gradually move away from the older version. Please feel free to provide your feedback in the comments field below so we can continue to tailor the new interface to your needs! If you haven't yet tried the new interface, learn more about getting started today. Posted by Vincent Zanotti - AdSense Engineering   URL: http://feedproxy.google.com/~r/blogspot/tuAm/~3/iAhuK3KTRXo/new-interface-wednesdays-multi.html   |
| [G] Protecting users from malware hosted on bulk subdomain services Posted: 18 Jun 2011 02:30 PM PDT Google Online Security Blog: Protecting users from malware hosted on bulk subdomain servicesPosted by Oliver Fisher, Google Anti-Malware TeamOver the past few months, Google's systems have detected a number of bulk subdomain providers becoming targets of abuse by malware distributors. Bulk subdomain providers register a domain name, like example.com, and then sell subdomains of this domain name, like subdomain.example.com. Subdomains are often registered by the thousands at one time and are used to distribute malware and fake anti-virus products on the web. In some cases our malware scanners have found more than 50,000 malware domains from a single bulk provider. Google's automated malware scanning systems detect sites that distribute malware. To help protect users we recently modified those systems to identify bulk subdomain services which are being abused. In some severe cases our systems may now flag the whole bulk domain. We offer many services to webmasters to help them fight abuse, such as:
 URL: http://googleonlinesecurity.blogspot.com/2011/06/protecting-users-from-malware-hosted-on.html   |
| [G] Trying to end mixed scripting vulnerabilities Posted: 18 Jun 2011 02:30 PM PDT Google Online Security Blog: Trying to end mixed scripting vulnerabilitiesPosted by Chris Evans and Tom Sepez, Google Chrome Security TeamA "mixed scripting" vulnerability is caused when a page served over HTTPS loads a script, CSS, or plug-in resource over HTTP. A man-in-the-middle attacker (such as someone on the same wireless network) can typically intercept the HTTP resource load and gain full access to the website loading the resource. It's often as bad as if the web page hadn't used HTTPS at all. A less severe but similar problem -- let's call it a "mixed display" vulnerability -- is caused when a page served over HTTPS loads an image, iFrame, or font over HTTP. A man-in-the-middle attacker can again intercept the HTTP resource load but normally can only affect the appearance of the page. Browsers have long used different indicators, modal dialogs, block options or even click-throughs to indicate these conditions to users. If a page on your website has a mixed scripting issue, Chromium will currently indicate it like this in the URL bar:  And for a mixed display issue:  If any of the HTTPS pages on your website show the cross-out red https, there are good reasons to investigate promptly:
We also added an infobar that shows when a script is being blocked:  As a user, you can choose to reload the website without the block applied. Ideally, in the longer term, the infobar will not have the option for the user to bypass it. Our experience shows that some subset of users will attempt to "click through" even the scariest of warnings -- despite the hazards that can follow. Tools that can help website owners If Chromium's UI shows any mixed content issues on your site, you can try to use a couple of our developer tools to locate the problem. A useful message is typically logged to the JavaScript console (Menu -> Tools -> JavaScript Console):  You can also reload the page with the "Network" tab active and look for requests that were issued over the http:// protocol. It's worth noting that the entire origin is poisoned when mixed scripting occurs in it, so you'll want to look at the console for all tabs that reference the indicated origin. To clear the error, all tabs that reference the poisoned origin need to be closed. For particularly tough cases where it's not clear how the origin became poisoned, you can also enable debugging to the command-line console to see the relevant warning message. The latest Chromium 13 dev channel build (13.0.782.10) has a command line flag: --no-running-insecure-content. We recommend that website owners and advanced users run with this flag, so we can all help mop up errant sites. (We also have the flag --no-displaying-insecure-content for the less serious class of mixed content issues; there are no plans to block this by default in Chromium 14). The Chromium 14 release will come with an inverse flag: --allow-running-insecure-content, as a convenience for users and admins who have internal applications without immediate fixes for these errors. Thanks for helping us push website security forward as a community. Until this class of bug is stamped out, Chromium has your back.  URL: http://googleonlinesecurity.blogspot.com/2011/06/trying-to-end-mixed-scripting.html   |
| You are subscribed to email updates from Googland To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google Inc., 20 West Kinzie, Chicago IL USA 60610 | |
No comments:
Post a Comment