Earlier this year I accidentally blocked search engines from my blog. Want to see what that looks like? Continue reading…
I made a stupid error recently, so I thought I’d document it in case anyone else was planning on going the same way.
The day a thousand apps stool still
I noticed some weeks ago that Twitter’s OAuth implementation didn’t appear to be verifying signatures. I knew this because I purposefully set an invalid access token which was accepted unconditionally. I thought this was odd, but as a newbie to OAuth I was just happy that my app was working, so I filed the problem at the back of my mind under “deal with it if it becomes a problem”. Today (the week I release by beloved TwitBlock app) it very suddenly became a problem.