Enter Dashboard, Expose, or Spaces Temporarily
Hold down F9, F10, F11, or F12 (or whatever you've set for the Expose and Spaces keyboard shortcuts) for a few seconds, and then release the key to enter and leave the appropriate mode without having to press the key again. This is particularly useful for Dashboard, in which you can check the contents of a widget and then return to your work with only a single key press.
Visit plucky tree
Submitted by
cricket
Recent TidBITS Talk Discussions
- Alternatives to MobileMe for syncing calendars between iPad/Mac (1 message)
- Free anti-virus for the Mac (20 messages)
- iTunes 10 syncing iPod Touch 4.1 (2 messages)
- Thoughts about Ping (16 messages)
Related Articles
- Google's Gmail Defaults to Encrypted Sessions (13 Jan 10)
- Security Experts Urge Google to Secure All Sessions (19 Jun 09)
- Sidejack Attack Jimmies Open Gmail, Other Services (27 Aug 07)
Published in TidBITS 938.
Subscribe to our weekly email edition.
- Anthropomorphic Fonts in CollegeHumor Video
- Stop the iPod touch's Constant Beeping
- Apple Reports Billion Dollar Profit for Q3 2008
- iTunes 7.7 Corrupts Accented Artist and Track Names
- MobileMe Status Page Promises Updates, But Tone Rings Flat
- Prepping Web Images with iWatermark
- Apple Fails to Patch Critical Exploited DNS Flaw
- TidBITS Watchlist: Notable Software Updates for 28-Jul-08
- Hot Topics in TidBITS Talk/28-Jul-08
Google Gmail Adds Secure Session Option
Google has plugged one of the biggest security risks associated with using its free hosted Gmail mail service, still in beta after four years. You can now select an option in your account preferences to make every session require an encrypted Web connection. I wrote about a number of Gmail vulnerabilities that researchers had found in "Sidejack Attack Jimmies Open Gmail, Other Services," 2007-08-27.
Gmail requires a secure connection for your login details, regardless of whether or not you start with the secure Gmail site address. However, if you start at the non-secure Gmail site, Google redirects you back to an unencrypted Web connection after login. That's always been a mistake on Google's part because your messages would pass in the clear. The sidejacking attack referenced above also proved that someone could intercept your Google session token and have full access to your Gmail account.
Google explained in its Gmail blog that the service has added a Browser Connection option at the bottom of its Settings > General view that lets you select "Always use https," which is the protocol name for a URL that makes your browser start up a SSL/TLS encrypted connection with a Web server.
The Google blog also noted a link that's now at the bottom of the inbox that provides account activity details, as well as a way to sign out sessions initiated from other machines. In my case, for instance, I see several recent sessions: a browser connection last night from home, and IMAP connections from my iPhone for retrieving recent email automatically. (Google is in the process of rolling this feature out, so it may not appear for you quite yet, as it didn't for Adam Engst).
These two changes improve Gmail's security dramatically. I recommend you turn on the https setting immediately.
![](/file/11593/db.tidbits.com.tar/db.tidbits.com/images/badges/pear-note-icon50x50.png)
Typed notes are blended with recorded audio, video, and slides
to create notes that make more sense when you need them most.
Learn more at <http://www.usefulfruit.com/tb>!