Archived; click post to view.
Excerpt: The average IQ of the internet pedophile is apparently much higher than the aggregate of IQs at MySpace. Let me make a prediction: MySpace will be found liable for several incidents of child exploitation going forward — even more so than before. Wired's blog made it public over here. I was blissfully unaware of this until now (not being a pedophile and all…), but I could always tell that MySpace was a poorly conceived application. The idea was good, but that is where it ended. The problem is that MySpace was started (and hence programmed) by a team that never knew…

Archived; click post to view.
Excerpt: Authored By: Cristian Darie http://www.cristiandarie.ro/books. I'm writing this article to warn you about an implementation detail of the ASP.NET 2.0 session management mechanism, which, if handled incorrectly, can potentially remove your ASP.NET 2.0 web site from Google's index. The Background The communication protocol our web browsers use when navigating the Internet - HTTP - was designed to be stateless protocol. Unless special tracking-techniques are used, a web server that serves many requests at the same time cannot know if those requests come from different users, or from a single user performing multiple requests. Using an IP address to is particularly useless when NAT-based…

<?

/*
Plugin Name: HTMLTaintCheck
Plugin URI: http://www.seoegghead.com/
Description: Checks for suspicious links in posts. MAKE SURE TO REPLACE YOUR
EMAIL ADDRESS IN THE CODE BELOW — ALSO ONLY LEAVE THIS ON TO CHECK, THEN TURN IT BACK OFF!!!
Author: Jaimie Sirovich
Version: 0.1
Author URI: http://www.seoegghead.com/
*/ 

if (true) {
  check_posts();
}

function check_posts()
{    

    global $wpdb, $table_prefix;

    $items = $wpdb->get_results("

        SELECT post_title, ID, post_name, post_content

        FROM {$table_prefix}posts

        WHERE TRUE
    ");    
    
    $copy = ";
    
    foreach ($items as $i) {
        if (preg_match('#adshelper|softicana#i', $i->post_content)) {
            $copy .= $i->ID . ' ' . "IS SUSPICIOUS.\r\n";
        } else {
            $copy .= $i->ID . ' ' . "OK.\r\n";
        }
    }
    
    mail('YOUREMAIL@ADDRESS.com', 'test', $copy);    
}

?>

Archived; click post to view.
Excerpt: Update: WP developers are looking into this now . . . The current version of WordPress (also 2.1-2.3.1 verified so far) is apparently vulnerable to an HTML-tainting attack. I first noticed it on this blog in the next-to-top post. I've actually been on a vacation of sorts, but I monitor changes to my web site carefully. WordPress.org has been notified, but I feel that releasing only the existence of the potential vulnerability is ethical. I have also created a a tool to audit for this attack (see "How Do You Know If You're Affected?" below). Others'…

Archived; click post to view.
Excerpt: And it's not just a patched-together port of Search Engine Optimization with PHP, either. Cristian and I did it right. The examples are programmed using typical ASP.NET design patterns, and we built reusable components for your .NET applications. So if you're an ASP.NET programmer and you need to know how to effectively use rewriting tools, implement cloaking and geo targeting, or just want a good reference, buy the book. Professional Search Engine Optimization with ASP.NET: A Developer's Guide to SEO teaches you, with step-by-step coding examples: * To understand the most important criteria that influence…

Archived; click post to view.
Excerpt: One day your traffic comes to a grinding halt. What happened? Check the index. Google may have found all your reciprocal links from i-hump-sheep.info and white-castle-coupons.biz. But it's also possible that you have been "proxy hacked." That's the term being tossed around by a few people who have been mum on it for awhile — Alan Perkins, Danny Sullivan, Bill Atchison, Brad Fallon, and a few other people that are actually exploiting this hole right now (and whom we don't know). And it's likely the reason Google (http://googlewebmastercentral.blogspot.com/2006/09/how-to-verify-googlebot.html ), Yahoo (http://www.ysearchblog.com/archives/000460.html), MSN (http://blogs.msdn.com/livesearch/archive/2006/11/29/search-robots-in-disguise.aspx), and Ask (http://about.ask.com/en/docs/about/webmasters.shtml#21) all…

I've seen sick for awhile now, but I'll have some goodies for people later today. I've been taking some time off, vacationing, and relaxing. I should be better soon. Later today I'll have a post worth reading.