twitter!!

Twitter bug creates account hijacking peril – i’m not sure that this is exactly related to what i have been experiencing, but it does explain a lot, especially since i didn’t start experiencing a problem until after i had “disabled” my twitter account…

now to determine whether or not there is a way to prevent cross-site scripting in wordpress…

growl, grumble, gripe, complain… 😡

ETA: it is as i feared: WordPress 3.0.1 – Cross Site Scripting Issue and Twitter XSS Proof of Concept – it doesn’t work if you’re running NoScript (which i am), but there it is… i suppose now it’s just a matter of waiting until somebody comes up with a fix for it…

further growl update II

apparently either something was “stuck” in my computer that i deleted when i deleted and re-uploaded my blog yesterday, or something else is going on, because so far, the unauthorised authorisation dialogue that has been plaguing me for the past three days has now flown the coop… grr. it’s back again… 8/ it’s like it waits until i’m actually typing a post before it shows up… weird!

apparently the process of disinfecting those two files that i discovered yesterday completely re-did the way the blog “plugins” work, because when i booted up this morning, i suddenly discovered that wordpress does, in fact, keep track of things that it seems to have been forgetting for a while now. maybe the thing that is supposed to email commenters when there’s a new comment will suddenly start to work now…

also, i’m sorry to say it, hobbit, but i have miraculously discovered a bidding war over the collection of conan books which is now up to $22 and the auction still has 9 hours before it’s over…