To the (literally) hundreds of you who wrote in about the broken photos the past few weeks, I’m happy to say that the photolog is back online. It broke because while 95% of Gallery works fine with register_globals off, apparently some bit of code somewhere doesn’t. If you haven’t been to the photolog in a while there are some fun pictures from Dallas, Seattle, and New York.
There is a new “Web 2.0 Show” (on podcast of course) that interviewed me as part of their innagural podcast. The Skype call quality was pretty bad, I must have been too close to the mic on my Powerbook or something. They said they’re fixing that for future shows.
Filed under: WordPress
When working on some new AJAX features for bbPress and WordPress we’ve noticed that AJAX requests don’t seem to send HTTP_REFERER values. We check referrers as one level of protection against cross-site-scripting, or XSS, so when they’re not set we aren’t able to use that value. How are most people using AJAX protecting against XSS? It seems the same things we’re doing to make things easily accesible in a dynamic fashion are also opening new vectors for attack.
Well you can buy one on ebay for $25 (and growing), you can guess how much the ebay invite is going to go for, or you can read Photo Matt. 
I’ll send an invite to the person who leaves the best comment or ping about how they would use their WordPress.com blog, if they had one. I’ll pick a comment 12 hours from this post, so about 1:15 PM PST.
The Rogue Librarian (better known as Carrie Bickner) has switched to WordPress as well as a new design. Looks lovely!
Niall figured out how to get on Google’s Jabber server, I tried it out myself and was able to chat with him using talk.google.com. Cool!
The the new A List Apart is gorgeous and functional as well. Congrats to their team.
As I recover from the rush that was Bar Camp I just wanted to thank everyone who was a part of it, because I think the success of the event was directly because of all the amazing people who came out. A special thanks to SocialText for offering the venue that brought so many people together.
Sitepoint has switched their blogs to WordPress, which I find amusing since in 2001 I joined SitePoint to learn more about web stuff and their PHP/MySQL tutorial was probably the first I used. Here they talk about integrating WP with vBulletin. Hat tip: EasyRew and Josh Lavin via email.
Owen has a nice animated screenshot of the new WYSIWYG features in WordPress. By the way, I’ll be doing the first public demo of WP 1.6 and WordPress.com tomorrow morning at 8 AM at the Blog Business Summit.
The WordPress download counter is about to break half a million!
I’m blogging about the Blog Business Summit over on my WordPress.com blog. Here’s the feed.
At the Blog Business Summit the next few days we’ll have a graphic in the slideshow that they have on the screen during downtime. Check it out. It’s care of the extremely talented Khaled.
Blog Business Summit starts today, but what I’m really looking forward to is BAR Camp this weekend. I think this is the start of something very exciting.
Russ switched to WordPress and has written a little bit about it. His permalinks are still a little funky, but they match his old system and in terms of content the transition from his custom CMS seems to have been pretty seemless.
Plugins to search both the WordPress Codex and WordPress Support forums from your Firefox search bar. Cool!
