Twitxr – Twitter with Photo

Twi…k-ster? The FON founder Martin Varsavsky has announced the correct pronunciation Twicher on his blog [1]. If you still don’t now how to say this word, try this interview video [2], fast forward to 1:42.

Basically, Twitxr [3] is Twitter + Photo. You can take a photo with your mobile phone, then upload it to Twitxr with simple text and geo-tagged (could be supported by AGPS technology [4]). Currently, there is only iPhone client for download.

It can forward your message to your Twitter, Flickr and Facebook. You can send updates from web, email (a random generated email address at twitxr.dom) and phone. Twitxr has API, too. However, the protection of password is only one round md5 hash [5], it’s really not secure enough. HTTP 1.1 Basic Auth has no encryption [6]. If someone uses lazy password or password is too short, the password will be found very soon. Its login process isn’t secure, either.

While I am writing this blog post, I have a follower, I just registered for less an hour.

Update: Its login process isn’t secure totally, either. It uses md5 hash before sending login information, it’s still not secure. The reason is the same as mentioned above.
Update: I posted my suggestions about security on Twitxr API developers group [7].

  1. Twitxr is pronounced Twicher
  2. FON Labs, Twitxr, and Translating Facebook Apps
  3. Twitxr
  4. Assisted GPS
  5. Public API of Twitxr
  6. RFC 2617 HTTP Authentication: Basic and Digest Access Authentication – Page 5: Basic Authentication Scheme
  7. a suggestion
This entry was written by livibetter, posted on February 20, 2008 at 11:06 pm, filed under Net Kingdom and tagged , , , . Bookmark the permalink. Follow any comments here with the RSS feed for this post. Post a comment or leave a trackback: Trackback URL.

Post a Comment

Your email is never published nor shared. Required fields are marked *

*
*