Favicon on WordPress.com

May 8, 2009

I wonder whether there’s a way to set a favicon on a blog on WordPress.com the way you can on normal websites, like this article on favicons says.

I tried looking into the Media section, but it’s just a list of pictures I’ve attached to posts or my banner. I’m not sure if I’m looking in the right place though. Or whether such an option is even available.

Filed in WordPress, Web Design.

Advertisements

Why Does WordPress Insert Its Version Number into HEAD?

March 31, 2009

I just noticed from my other blog that uses the downloadable version of WordPress that it inserts the wordpress version number into the HEAD of the blog pages. Why does it do that? Leaking this information in this day and age only lets hackers know that a particular blog is vulnerable, if it hasn’t been updated yet.

It’s interesting that blogs on wordpress.com do not have the version number inserted into the HEAD. So why the hypocrisy?

Filed in WordPress, Security.


WordPress 2.7 Beta 1 Released: Very Promising

November 2, 2008

WordPress 2.7 Beta 1 has been released, with a Release Candidate probably due on Nov 10 and a final by the end of the month. This new version is very promising, and is much more usable than the older one. I read their previous blog entries about how they got some usability testing done. I can’t wait for it!

Filed in WordPress, Web Design.


Why is My WordPress.com Exported Posts XML Smaller?

October 9, 2008

I just added a new post to my blog, and exported the posts as usual for backup on my computer. And I noticed that the new export was about 300 kb smaller than my previous export, which is supposed to contain fewer posts. Why? I didn’t prune any comments or delete any spam or edit any other posts.

Did WordPress.com delete something from my export file? Why is it smaller when it should be bigger? Is there a bug somewhere?

Filed in WordPress.


Will WordPress.com Please Provide Us Better Web Statistics?

September 11, 2008

Yesterday, when I looked at the HTML code for my blog on WordPress.com, I noticed that WordPress.com put some Google Analytics tracking code into the blog. As a blogger, I have no access to that data. Instead, I have the smidgen of information WordPress deigns to reveal in its half-baked, brain-dead stats report. And I can’t even put my own Google Analytics code, because JavaScript is not allowed.

Come on, guys, since you have the data, make it available to us.

For example, after posting my review of Chrome, I’m curious to know what percentage of my readers use Chrome. Ars Technica wrote that Chrome has a 7% browser share on their site. I want to know the Chrome browser share for my blog too.

I also want other details. Mouth-watering details provided by other software. As it is, I can only drool.

So can we have better stats? Please? Pretty please?

Filed in WordPress, Web Design, Browsers.


WordPress 2.6.2 Released

September 9, 2008

WordPress 2.6.2 has been released. At this time, I can’t seem to find the release notes on the site, but judging from the proximity to the 2.6.1 release, my guess is that it fixes security problems.

Since there are no release notes yet, the quick way to upgrade WordPress referred to in my previous post can’t be used.

I don’t have to update this blog on WordPress.com, but I’ve got another one with a normal WP install to update. So much for getting a life. I’m a slave to technology.

Update: Yes It’s a Security Fix

I was right. It looks like 2.6.2 is a security fix. Here’s apparently what’s new in 2.6.2.

If you allow open registration on your blog, you should definitely upgrade. With open registration enabled, it is possible in WordPress versions 2.6.1 and earlier to craft a username such that it will allow resetting another user’s password to a randomly generated password. The randomly generated password is not disclosed to the attacker, so this problem by itself is annoying but not a security exploit. However, this attack coupled with a weakness in the random number seeding in mt_rand() could be used to predict the randomly generated password.

Filed in WordPress, News.


WordPress.com is Getting More Irritating By the Month: The Progressive Loss of Control

August 8, 2008

WordPress.com proves that you really need to install your own copy of WordPress for your own blog instead of outsourcing it to someone else.

  1. When I first started, I noticed that it plugged in links to its own tag pages into my blog posts. Ugh!
  2. Then I found that when I surfed to my posts without logging in, some of them contain ads. Yucks.
  3. The latest irritation is this “Possibly related posts: (automatically generated)” content that is embedded right into the content of some posts. The indignity!

There’s a progressive loss of control over the blog when you let others run things. I mean, who knows what they’re going to do next? Change words into ad links within your post itself? Can you even trust these people?

Filed in Outraged, WordPress, Web Design.