MatrixAdapt | Logiciel de gestion d'Entreprise, Création et référencement des sites web

Seo Master present to you: Earlier today Meebo announced Extended Authentication (XAuth), an open platform that makes it possible for users to bring their preferred services with them across the web.

To learn more about XAuth and why we're among the supporters of this technology, check out our post on the Social Web Blog.

From a technical perspective, we wanted to offer you some additional insights into how this technology works.

If you visit Meebo's XAuth page, you should see an array of logos:

When this page loaded, it requests the list of services that have been registered with XAuth by making an HTML5 window.postMessage request to xauth.org. As you can see in the graphic, no active sessions were detected.

When the user clicks through to one of the linked demo pages — we'll use googxauthdemo.appspot.com in this case — the same JavaScript is loaded from xauth.org. When the user successfully authenticates, some basic information is pushed to the browser's HTML5 localStorage:

<script type="text/javascript">
function doLogin(doneUrl) {
 /* Tell XAuth.org that a user has just signed into Google on this browser. */
 XAuth.extend({
   // reveals "someone is logged into Google"
   token: "1",
   // Expires after 24 hours or if the user explicitly logs out
   expire: new Date().getTime() + 60*60*24*1000,
   // Allow any domain to read this info (could also be a whitelist of partners)
   extend: ["*"],
   // Optional callback function once extend() has completed.
   callback: makeRedirectFunc(doneUrl)
 });
}
</script>

This information — that the user has an active session at googxauthdemo.appspot.com — is now available to any site on the web (because extend: ["*"] uses the wildcard case to make this information world-readable; providers can also choose to restrict access to this information to certain domains or partners).

Upon returning to meebo.com/xauth, the page requests the list of active sessions from XAuth, and passes the browser an array of domains that the browser will match against the local storage for xauth.org:

<script type="text/javascript">
XAuth.retrieve({ 
  retrieve: ['xauth.org', 'googxauthdemo.appspot.com', 'xauthdemo.mslivelabs.com'], 
  callback: receiveTokens } 
);
</script>

The major performance and scalability benefits of this design are a result of the single HTTP request made to xauth.org to determine which services are currently active, rather than one-request-per-domain. The request and response are also purely client-side, so there's no waiting for a server to look up anything in a database — and the XAuth JavaScript files get cached after they are first retrieved, making XAuth overall very efficient.

Once the tokens are retrieved the program iterates through them looking for matches, and then modifies the interface according the service token discovered, like this:

<script type="text/javascript"> 
function receiveTokens(responseObj) {
 var tokens = responseObj.tokens;
 var token = tokens['xauth.org'];
 var partners = {}; 
 var tokensFound = false; 
 if (tokens['googxauthdemo.appspot.com']) { 
   partners['google'] = true; 
   tokensFound = true; 
   var status = document.getElementById('status-google');
   status.innerHTML = 'Signed In!';
   status.style.color = '#0A0'; 
 } 
}
</script>

In this way, site publishers can detect a user's set of active and preferred services, or request a subset of known services, and present only those services which are known to be currently active. In practice, the list of services provided at any given time by xauth.org should not be considered exhaustive, but instead a suggestion for how to prioritize complex service selection dialogs and interfaces, like those known as "NASCAR" interfaces.

For more technical information about XAuth, please read the spec, or visit the informational page on xauth.org.

Posted by Chris Messina, Social Web Team2013, By: Seo Master

seo Using XAuth to simplify the social web 2013

Seo Master present to you:

DoFollow social bookmarking sites play a vital role in bookmarking and in backlink creation. But you must have to share links in DoFollow website to build backlink. Social bookmarking sites keep user busy with sharing articles and link like social networking sites. More DoFollow back links help you to get higher page rank. I have tried here to list some DoFollow social bookmarking sites for you; these are:

Serial No.	Bookmarking Sites	PageRank
1	http://slashdot.org	8
2	http://digg.com	8
3	http://reddit.com	8
4	http://stumbleupon.com	8
5	http://connotea.org	8
6	http://delicious.com	8
7	http://weheartgossip.com	8
8	http://technorati.com	8
9	http://mixx.com	8
10	http://citeulike.org	8
11	http://mister-wong.com	7
12	http://diigo.com	7
13	http://squidoo.com	7
14	www.connotea.com	7
15	http://metafilter.com	7
16	http://designfloat.com	7
17	http://fark.com	7
18	http://newsvine.com	7
19	http://bibsonomy.org	7
20	http://blinklist.com	6
21	http://folkd.com	6
22	http://wikio.com	6
23	http://current.com	6
24	http://hotklix.com	6
25	http://jumptags.com	6
26	http://dzone.com	6
27	http://clipmarks.com	6
28	http://bizsugar.com	6
29	http://smallbusinessbrief.com	6
30	http://pusha.se	6
31	http://kwoff.com	6
32	http://blogmarks.net	6
33	http://svejo.net	6
34	http://icio.de	6
35	http://sphinn.com	6
36	http://buddymarks.com	5
37	http://social-bookmarking.net	5
38	http://fwisp.com	5
39	http://dropjack.com	5
40	http://netvouz.com	5
41	http://givealink.org	5
42	http://tagza.com	5
43	http://newsmeback.com	5
44	http://wirefan.com	5
45	http://japundit.com	5
46	http://linktab.co.uk	5
47	http://haohaoreport.com	5
48	http://youblr.com	5
49	http://japansoc.com	5
50	http://designbump.com	5
51	http://tipd.com	5
52	http://shetoldme.com	5
53	http://youmob.com	5
54	http://searchles.com	5
55	http://swik.net	5
56	http://gabbr.com	5
57	http://qaafe.com	4
58	http://a1-webmarks.com	4
59	http://clipclip.org	4
60	http://wists.com	4
61	http://b2blocal.net	4
62	http://jeqq.com	4
63	http://cloudytags.com	4
64	http://izeby.com	4
65	http://myhq.com	4
66	http://medical-articles.net	4
67	http://linkatopia.com	4
68	http://popscreen.com	4
69	http://linkr.hu	4
70	http://iliketotallyloveit.com	4
71	http://1888pressrelease.com	4
72	http://corank.com	4
73	http://blogengage.com	4
74	http://indianpad.com	4
75	http://lintasberita.com	4
76	http://addictionaire.com	4
77	http://fcc.com	4
78	http://sitejot.com	4
79	http://shoutwire.com	4
80	http://dealigg.com	4
81	http://oyax.com	4
82	http://startaid.com	3
83	http://humsurfer.com	3
84	http://linkarena.com	3
85	http://tugatop.com	3
86	http://postonfire.com	3
87	http://wagg.it	3
88	http://rambhai.com	3
89	http://bukmark.net	3
30	http://bookmark4you.com	3
91	http://bharatwaves.com	3
92	http://linksnapr.com	3
93	http://bmaccess.net	3
94	http://blogbookmark.com	3
95	http://business-planet.net	3
96	http://pfbuzz.com	3
97	http://totalpad.com	3
98	http://zabox.net	3
99	http://indiantags.com	3
100	http://ziki.com.au	3
101	http://affiliated-business.com	3
102	http://fashionablylatent.com	3
103	http://therealpassport.com	3
104	http://topinews.com	3
105	http://bligg.be	3
106	http://craftjuice.com	3
107	http://thuhm.com	3
108	http://indiamarks.com	3
109	http://bukmark.net	3
110	http://bookmark4you.com	3
111	http://bharatwaves.com	3
112	http://linksnapr.com	3
113	http://bmaccess.net	3
114	http://blogbookmark.com	3
115	http://business-planet.net	3
116	http://pfbuzz.com	3
117	http://totalpad.com	3
118	http://zabox.net	3
119	http://indiantags.com	3
120	http://ziki.com.au	3

I think this DoFollow Social Bookmarking Sites you give you benefit in link building campaign. These DoFollow sites are important because they are allowed to index by search engine. If you bookmark your page or comment on NoFollow websites, it will not give you any benefit to gain your search engine ranking. So, Happy Bookmarking!!!

2013, By: Seo Master

seo Top 120 High PR Social Bookmarking Dofollow Sites For Link Building Easily 2013

Seo Master present to you:

what is cross site scripting XSS and its types

Today I will explain you what is cross sitescripting. In my previous article I have explained that the top security flaw in a website. According to the open web application security project cross site scripting XSS is very common security flaw in the website. This threat very dangerous for the website. Most of my fans and followers ask so many questions about cross site scripting XSS. As I am security researcher I have also found 100 Cross site scripting XSS on website.so I am going discuss with you complete guide of cross site scripting So guys lets

If you want to find Cross sitescripting XSS so you have to learn following prerequisite

Basic Knowledge in Hypertext markup language (HTML)

Strong Knowledge of JavaScript

Basic knowledge of HTTP client server Architecure

Basic knowledge of (PHP, ASP.NET)

What is cross site scripting XSS?

Cross site scripting XSS is one of the common website security flaws that allow a Hacker | Attacker to run his client side scripts like JavaScript’s payload into website that is viewed by others. with the cross site scripting bug may be hacker bypass access control .if hacker successfully exploit cross site scripting XSS so then hacker easily do steal account, phishing attack and many more. In simple word with the help of cross site scripting XSS hacker inject his malicious JavaScript payload into website then a user visit the website link then it will execute the malicious JavaScript payload.

Types of Cross site scripting XSS:

There are two types of Cross site scripting XSS

1. Persistent XSS ( Stored XSS)

2. Non persistent XSS ( Reflective XSS)

Persistent Cross site scripting XSS:

The persistent XSS also known as stored XSS. As shown with the name of stored XSS and this Cross site scripting XSS stored somewhere. When attacker used Cross site scripting XSS malicious code inject into the website and then this payload saved by the server in the database and then is will run in the normal link of website.

Example of persistent XSS

There are so many website which support the forum and where the user register and ask a question like answer.yahoo.com. if the Hacker post a message with the malicious JavaScript payload then if the server fail to sanitize the payload and then code execute easily. So whenever user read to this post and open a link then inject code cookie stealing of a user and then hacker easily bypass his account.

NON persistent Cross site scripting XSS:

Non persistent also known as reflected XSS. This is very common vulnerability discover by security Researchers. And this is find in the search filed like search, contact page and subscribe email. in this attack hacker inject payload will send to the server with the request of HTTPrequest and then server embed with html file and then return HTTPresponse to the browser. When the browser execute the file and then it’s also execute the scripts. so it’s a reflective XSS.

DOM based Cross site scripting XSS:

In the addition to these types DOM based XSS also third type of cross site scripting XSS. This is very important part of XSS. Most of the big website like Microsoft, PayPal, Nokia, eBay and many more website. Later on IN SHA ALLAH I will explain more about DOM based XSS.

so in my next tutorials . i will tell you about how to find Cross site scripting XSS. and if you have any problem or any quary so you can ask me