Trevor Burnham: Sure, it works in practice…

Flicker-free Typekit

January 28th, 2010

I’m a fan of Typekit. Being able to go beyond the old Arial-Verdana-Times-Georgia paradigm, on any modern browser, without Flash (unlike sIFR), and with selectable text (unlike Cufón), is a dream come true.

One problem, though: It takes a few milliseconds to load up and render those fonts. That’s not so bad in itself; what’s bad is that the browser renders everything in non-Typekit fonts first, creating an annoying flicker every time the page loads as the text gets replaced by fancier fonts.

Fortunately, there’s a fairly easy solution (though not an officially supported one—see below). Just add this to your site body:

<body id="domain-com">
  <script type="text/javascript" src="http://use.typekit.com/KIT_ID.js"></script>
  <script type="text/javascript">
    document.getElementById('domain-com').style.opacity = 0;
    setTimeout("document.getElementById('domain-com').style.opacity = 1", 1000);
    Typekit.load('KIT_ID', {
      afterLoad: function(data) {
      	setTimeout("document.getElementById('domain-com').style.opacity = 1", 1);
      }
    });
  </script>
  <!-- content goes here --> 
</body>

Then substitute your actual domain for domain-com, and (important!) your site’s unique Typekit ID for KIT_ID. You can get this ID by logging in to Typekit, launching the Kit Editor, and clicking the “Embed Code” link; it’s an 8-letter alphanumeric combination.

Here’s a breakdown:

The <body> ID on line 1 isn’t just a good selector; it’s good form. The most common convention is to use your domain (with a dash instead of a dot), which makes things easier for the Greasemonkey types.
The script include on line 2 brings in the Typekit description of your site’s kit. You can move this line up to your <head> section if you want.
Line 4 makes your entire site disappear. Because this is at the top of your body, nothing is going to get rendered. It’s important that this line be here, rather than in another file or even at the foot of your body.
The call to Typekit.load does the actual loading of the fonts, and the afterLoad callback will be executed right after that happens. That’s when we want to make the body opaque again, right? Well, not quite. It seems that there’s a small delay between the callback and text refresh. Fortunately, using setTimeout to add a tiny delay (1ms) seems to eliminate this, finally ridding us of the dreaded flicker.

Caveat: The afterLoad event is currently considered experimental. An official solution for avoiding flicker is likely to be added in the future.

Tags: coding design TypekitNo Comments.

The Most Important IDE Feature

January 24th, 2010

Say you’re working on a project with hundreds of files. Changes to one file necessitate changes in others in an unfathomably complex tree structure. Using File -> Open each time you need to switch files is time-consuming, which is why simple text editors have been widely abandoned by programmers in favor of integrated development environments (IDEs) that offer tabs and a widget that shows the file structure at all times. This, more than syntax highlighting, is the reason why few projects are edited in Notepad.

But that’s still not enough. Why navigate the depths of a file tree when you can simply type the name of the file you want? This is the most important feature an IDE can offer. In Eclipse, it’s called Open Resource. In TextMate, it’s called Go to File. In Coda and Apple’s own XCode, it’s aptly dubbed Open Quickly, and goes one step further by performing full-text search on the files in the current project using Spotlight. Personally, I prefer the instantaneous of the Eclipse/TextMate approach; but either way, it’s certainly faster than using the mouse.

If you’re a developer who isn’t using this feature, find it. It will change your life at least as much as I’m guessing Quicksilver already has.

Tags: codingNo Comments.

Stronger Passwords for a Stronger America

January 21st, 2010

One thing that struck me when I was developing Quocial last summer was that I was spending a staggering amount of time on details that had little to do with the core functionality of my site. Thousands of little things go into making a webapp that works the way people expect. And yet, even when using a convention-over-configuration framework like Rails, developers constantly stumble into common problems and spend hours reinventing common solutions.

So, I’ve decided to start cataloging these frequent sticking points. Eventually, I’d like to organize them into a book, tentatively titled The Web Application Checklist. But for now, I’m just going to post them here on an as-I-think-of-them basis, with the tag wach. These entries are rough drafts and subject to heavy revision.

Today’s item: passwords. If your application has enough of a need for security to require a password, it should require a good password. So when a user tries to create an account secured by the string 123456, just don’t let them. If their password is in the first 10,000 guesses that Password Recovery Toolkit might try, tell them to pick another. Then implement some kind of throttling and/or CAPTCHA. If you fail to do this, accounts will be hijacked. This goes double for admins: As Twitter learned, you can’t even trust your own colleagues to pick good passwords.

Each time someone picks a password, run it by the Top 500 Worst Password of All Time. Reject it if it differs from anything in the list only by one or two characters. There ought to be a good, standard, open-source library for doing this, but I’m not aware of any (suggestions?), so you might have to hack together some regex yourself.

And, for those of you who’ve never done this before, don’t forget to only store the hash in the database, and salt the hash. Here’s why.

[Update, 1/21: Here is a nice overview of security concerns for webapps, including passwords. And here is some JavaScript code used by Twitter after The Incident to reject common passwords.]

Tags: wachNo Comments.

From the Department of Obscure Media

January 19th, 2010

Confidental Today I received an unsolicited free trial issue of The Counter Terrorist, which touts itself as the “Official Journal of the Homeland Security Professional.” It’s a slick, glossy magazine that carries advertisements for explosives, body armor, military-grade first aid, thermal cameras, “throwable tactical vehicles,” and (alarmingly) CBRN ensembles. It’s a Tom Clancy fan’s dream come true!

Most curious moment: An ad for bullets that are touted as both Certified Lead Free and offering Optimal Soft Tissue Penetration. I get that lead bullets are a serious environmental issue, but still, there’s something odd about seeing these two claims in the same set of, er, bullet points.

I have no idea why I received this issue. It served as a nice reminder, though: Print is not dead. It just grew a longer tail.

Tags: No Comments.

Kings: A Libertarian Reading

January 16th, 2010

You might not have heard of the short-lived NBC drama Kings. It’s a modern retelling of the rise of David from humble Goliath-slayer to majestic ruler, but that’s not important. What’s important is the sheer pleasure of seeing a world much like our own, in terms of technology and culture, that’s geopolitically stuck in the Old Testament. Picture The West Wing, but with the lovably presidential Martin Sheen replaced by a ruthless, theocratic dictator, King Silas, brilliantly portrayed by Ian McShane.

As with Deadwood, Ian McShane alone makes the series worth watching. But there’s something else that struck me after a few episodes. If there is a message to the series, it’s this: Everyone loves King Silas for the occasional mercy that he shows. (Most acutely, we learn in episode six that there’s an annual holiday, “Judgment Day,” on which the king hears exactly ten appeals from the lower courts.) To us, the sophisticated, democracy-loving viewers, this is obviously absurd: Why should the king get credit for rectifying injustices that he merely restrains himself from committing? And yet, any government, even an elected one, is subject to this same paradox. Having an unquestionable king is just the extreme case.

I can’t say for sure whether King Silas is intended to be the complex, conflicted, sinister yet sympathetic personification of “Big Government.” But it’s certainly possible to interpret him that way. Ayn Rand could learn a thing or two from Kings.

Tags: philosophy tvNo Comments.

Boycott www!

January 14th, 2010

There was a dark chapter in the early history of the Internet when, any time you wanted to go to a website, you had to painstakingly type “www.” in front of its domain name. This served a purpose of sorts: It told the server, in no uncertain terms, that you wanted to surf the World Wide Web. Never mind that the http:// prefix already said as much; Internet configuration was a dark and untested art, and it just seemed safest to use subdomains like www and ftp to be clear about which of your servers people were connecting to.

But then, as the millenium came to a close, and non-protocol related subdomains like webmail and blog began to proliferate, the www prefix began to fade away. To be sure, it remained on many sites as a vestigial reminder of the days of dial-up and Netscape Navigator, but most of the web’s denizens had learned that it could be safely forgotten. As hip newcomers like Twitter and foursquare dropped the prefix altogether, the augurs seemed clear: www was going gently into that good night.

Or was it?

Yesterday, someone posted to Hacker News that the domain nasa.gov is broken. You have to put www in front of it, or it won’t work. (Note that many browsers, like Firefox, automatically put www. in front of the domain you enter if it can’t reach it without it. But the most popular browser, Internet Explorer, doesn’t.) I replied that it had to be a temporary glitch—some idiot added a new subdomain to their DNS records and accidentally deleted the root!—but no, someone else pointed out, army.mil and navy.mil suffer from the same issue. It’s like they don’t want recruits who don’t habitually triple-tap ‘w’ before every web address!

Look: www has got to go. It’s a waste of bytes and time, our nation’s two most valuable resources. If you own a domain, here’s how to fix the problem:

Find your nameserver settings, specifically your A records. Make sure that your root domain is pointing to the same IP address as your www subdomain.
Redirect www.yourdomain.com/whatever to yourdomain.com/whatever. If you’re using Apache, you just need to add the following to either your configuration or a .htaccess file in the domain’s document root:
RewriteEngine On RewriteCond %{HTTP_HOST} ^www\.yourdomain\.com.* [NC] RewriteRule ^(.*)$ http://yourdomain.com$1 [R=301,L]

That’s it! Now if anyone tries to use www, even in a link to a specific page, they’ll still get to the right place. It’s so easy, even a rocket scientist could do it.

P.S. If you absolutely must keep www, at the very least allow those who omit it get where they’re trying to go. To do this, just modify the instructions above by using these lines in your Apache config instead:

RewriteEngine On RewriteCond %{HTTP_HOST} ^yourdomain\.com.* [NC] RewriteRule ^(.*)$ http://www.yourdomain.com$1 [R=301,L]

This is what Facebook does, for instance. But just as they dropped their superfluous “The” (remember?), rest assured that there will come a time when Facebook.com will truly stand alone.

Tags: web 2.01 Comment

Sloppy Notation Costs Lives

January 12th, 2010

Blackboard equations I had a grotesquely familiar experience in an econ class today: The prof drew up a simple example of a simple concept, yet no one—myself included—understood it. Why? Multiple inconsistencies. A variable name meant one thing in the premises, and something else in the conclusion; a vector was used interchangeably with its distance; the matrix dimensions didn’t match up. Individually, each of these small errors could have been caught and corrected. But taken as a whole, they destroyed every trace of coherence. As a result, half the lecture was spent with the frazzled professor trying to clarify things, only to confuse the audience further, to the point that students were yelling, “Enough! Forget it! Let’s move on!” These are PhD-level students at one of the top econ programs in the world. Yet the situation was so agonizing that it drove them to pandemonium.

When will people learn? If you’re addressing an audience, it is your moral imperative not to waste their time. In particular, there are three goals you must pursue:

Accuracy: Check your facts, and be rigorous
Clarity: Address points of possible confusion
Density: Convey as much information as you can in as little time as possible

This doesn’t just go for mathematical lectures. It goes for any interaction with your fellow human beings, with the imperative growing stronger in proportion to the size of your audience. No matter how much you value your time, if you’re giving a talk that hundreds will attend or writing a book that thousands will read, you owe them your most stringent efforts. Think about it numerically: If you save 3,600 people one second each, you’ve just saved someone an hour.

The desire not to waste other people’s time has always been one of my defining traits. Not that I always succeed, but at least I’m embarrassed when I fail. Sometimes I worry that this mentality is not widely shared.

Tags: design philosophy1 Comment

Calculus: The Videogame

January 9th, 2010

Last semester, I took a graduate-level course called Videogames and Learning, taught by Barry Fishman of the UMich Education department (who also teaches an undergrad version). Needless to say, the class is widely beloved, despite its dense syllabus of readings on the theory of learning and motivation. I decided to write my final paper on the question, “Why aren’t there any games that teach calculus?” (At least, not any successful ones.) There are some terrific games, like the Zoombinis series, that teach basic logic; and there are some compelling games, like the free online Lure of the Labyrinth, that teach arithmetic and algebra; but no one seems to have made a game that goes past the 8th-grade level. At the same time, no one has made an educational game as rich and immersive as, say, Mass Effect, a game so slick and well-written that it’s like living in the best sci-fi movie since The Empire Strikes Back.

Over time, I realized that this was not a topic conducive to academic publishing, so the project drifted from a research paper to a design one. The result is an attempt to describe how a game could be made to teach calculus, proof methodology, and ways of mathematical thinking—all within the context of a gripping adventure. The paper is called Math Effect. I hope you enjoy it. And if you’re a game designer, I hope it gives you ideas.

Math Effect

Tags: design gamesNo Comments.

Perfectionism

January 7th, 2010

Let me tell you the tale of a real perfectionist.

There once was a Yale professor by the name of Edward Tufte. He wanted to write a book about the presentation of statistical data. It was going to be rich in plots and graphs, accompanying the text on every page. Instead of tiny, clumsy footnotes, or pageflip-inducing endnotes, it would have wide pages with margins perfectly suited to his numerous citations and interjections. It was, alas, going to be an expensive book to print. And so, no publisher would take it in its intended form. They would cheapen it, separate the images from the text, make it just another forgettable academic treatise doomed to gather dust on library shelves. Rather than accept this fate, Edward Tufte decided to self-publish the book that would redefine his career: The Visual Display of Quantitative Information.

Now, when I say “self-publish,” you may have visions of Tufte uploading a PDF to iUniverse and ordering a dozen copies. No. This was 1983. Self-publishing was an arduous and expensive process—but Tufte was obsessed. So, he went all in, taking out a second mortgage and setting up a printing press in his garage.

Fortunately, the book was a smashing success, the first in a tetralogy of books that have come to define the intersection of design and statistics. The books are hallowed in both industry and academia for making one of the nerdiest subjects imaginable into an utter pleasure accessible to any reader.

Within this epic arc, there is a smaller story that may yet secure Tufte’s visage a permanent place in the dictionary next to the word “perfectionist”: When it came time for Tufte to convert his printing process to a purely digital one, it turned out that the digital version of the font he had been using, Bembo, was too spindly for his liking. Whereas an ordinary person would readily accept this minor deficiency (academics commonly publish in Euclid, one of the spindliest fonts ever devised), or switch to some other serif, Tufte worked with professional font designers to design a new and improved version of his beloved typeface. Such attention to detail is an inspiration to us all.

And so, if you pick up Tufte’s latest book, Beautiful Evidence, and turn to the colophon seeking elucidation on the book’s typography, here is what you’ll find: “Composed in ET Bembo.”

Tags: designComments Off

Smalltalk Lives!

January 5th, 2010

Byte magazine’s classic Smalltalk cover I was under the impression that these days, you’re more likely to find Smalltalk in the History department than the Computer Science department. That is, until:

I read a great interview with Dan Ingalls, the “mother of Smalltalk” (Alan Kay is the father) in the excellent Coders at Work, in which he discusses all the neat, fun things he’s been doing with the language lately, like Lively Kernel, a browser-based programming learning environment, and Squeak, which powers the One Laptop Per Child laptops, among other things.
I learned that Smalltalk powers DabbleDB. DabbleDB is a cool site that hosts spreadsheets in a much more web-like way than services like Google Spreadsheets, which are just trying to ape Excel in the browser (just as Excel aped Lotus 1–2-3, and Lotus 1–2-3 aped VisiCalc…).
All the other geeks interviewed in Coders at Work and Masterminds of Programming seem to like Smalltalk. C and its descendants (C++, Java…) get a lot of bashing, but Smalltalk is typically treated with unadulterated admiration. If languages were on Rotten Tomatoes, Smalltalk would be 92% fresh.

I don’t think Smalltalk is going to make a Big Comeback (newer languages like Scala are just too cool), but it’s definitely going to stick around for a while. And unlike the sticky, malodorous remnants of COBOL, I have no objection to the clean, classic scent of Smalltalk.

Tags: codingComments Off

Trevor Burnham

Sure, it works in practice…