Yabfog

Brian Breslin, of Twitbin, left a comment saying that Twitbin fixed the security flaw I previously pointed out. Cooool!

UPDATE: FIXED. See the comments below.

A couple weeks ago, I installed twitbin, a Firefox extension that loads twitter in a sidebar. But, I just happened to be checking my browser cookies, and I noticed that my twitter username and PASSWORD were stored in my browser cookies in plaintext! This is not even a session cookie -- it is persistent, with a one-year expiration.

Are you kidding me?! Twitbin -- uninstalled.

"[I]t is never appropriate for cookies to contain plaintext user names and passwords." [The World Wide Web Security FAQ]

The New York Times is doing a lot of great things with its website and RSS feeds. But somewhere along the way, they've introduced a bug in their code that generates the RSS feed for the home page.

The bug is that the channel title switches back and forth between "NYT > NYTimes.com" and "NYT > Home Page". This alternates at least once an hour, all day long (as near as I can tell). This constant switching causes one of my feed readers (FeedDemon) to alert me of the change every time it occurs. Of course this latter point is not directly the Times's fault, but it is driving me insane.

Screenshots to prove that I'm not already insane:

If you look closely at the raw RSS feeds, you will notice that they appear to be using two different tools to generate the same feed. So I guess the two tools are not configured exactly in sync with one another.

Just finished upgrading to WordPress 2.3. Went off without a hitch -- even converted my categories to tags. I did have one issue with that, though. For some reason, certain posts were marked "Uncategorized" while other retained only my default "Miscellany" category. I couldn't detect the pattern. I had to "hand" edit the database to finish cleaning that up.

Other issues so far: I'm getting blank pages after form submissions in the admin interface (UPDATE: caused by having no categories ). Also, I notice that the Blogroll > Import Links panel uses the wrong taxonomy category to obtain the list of blogroll categories.