Bloglines Security Fixes
Ben Lowery: The various security issues presented in this
thread have been addressed and fixes have been pushed out to the
production site. Please let me know if you find any problems with
the fixes, or if you find more issues.
Security issues are important and all, but I’d love to find out what it takes to get Sam, Tim Bray’s, and Mark’s feeds to be even vaguely usable in Bloglines...
Posted by Stephen Duncan Jr at
Bloglines Still Not Repsonsive
...and other feed readers still don’t get the basic features right. What’s a heavy reader of feeds to do? This promise regarding Atom 1.0 support has gone totally unhonored. I can think of no meaning of “as soon as possible” that means...Excerpt from Stephen's Statements at
Bloglines Still Not Responsive
...and other feed readers still don’t get the basic features right. What’s a heavy reader of feeds to do? This promise regarding Atom 1.0 support has gone totally unhonored. I can think of no meaning of “as soon as possible” that means...Excerpt from Stephen's Statements at
This begs the question of how, exactly, we should let him/them/anyone know if we find any more security issues. Insert a zero-day exploit into your own blog’s feed and wait for the internet to melt? (That is basically what Sam has been doing. I’ve done it too. It seems relatively effective, if unfriendly. The major downside is inconveniencing/irritating/putting at risk a large number of innocent bystanders, some of whom may leave pseudonymous comments claiming to have unsubscribed from your blog.)
Posted by Mark at