Comments

So I’m considering disabling my janrain plugin and switching to Intense Debate. I’m taking feedback from anyone who has used Intense Debate as an end user and/or on your own site.

This really only affects folks that log in via universal log-ins like Google, OpenID, twitter, etc. Those of you who have your  own log-ins here, won’t be affected. [1]This means you still have access to all the “private” stuff I post from time to time. heehee  The janrain plugin is easy to install but the back end setup takes more programming knowledge than I have to keep it running correctly. Plus, every time one of the big players update their api’s I end up having to start over with fixing it on my end. I don’t really have the time to screw with it. I like janrain because everything remains in-house, meaning all my comments are stored in my blog, not on someone else’s servers. This removes any problems with people not being able to comment if afore mentioned other servers go down.

There are a variety of comment management systems out there. I don’t like Disqus as I always have problems trying to use their platform from mobile devices. For whatever reason, the log-in mechanism never seems to go thru. Even worse, the comment box doesn’t seem to come thru as an actual box so I can’t activate the keyboard to type. Since about 70% of how I access blogs these days is thru mobile devices, I sure as hell ain’t planning to shoot myself in the foot. lol

Intense Debate seems to be very tightly integrated with WordPress. Instead of trying to hold all my comments, they sync with my WordPress installation. In simple terms, they keep comments added thru their platform on their servers but they also sync with my WordPress installation. In a nutshell, this means I get to keep my old and new comments. And, if I ever decide to ditch the platform I still keep all my comments. But wait, there’s more! I also don’t have to worry about mobile comments as my mobile plugin uses the WordPress built in comment system, which gets synced! I remember way back when I migrated from Blogger to WordPress, I lost all my comments. They didn’t have an import-comment function then and to do it manually was more headache than I wanted to research. Intense Debate also offers a variety of log-in options built into their platform. That means I don’t have to manage it on my own. You could still leave comments via your favorite universal long-in.

The only problem I can foresee is a user conflict if/when I switch over. Even when using universal log-ins, WordPress creates an internal user account on my blog tied to your email. I don’t know if a different platform like Intense Debate would understand if it’s the same user account or try to create a new one, which would generate a conflict. I sent Intense Debate an email asking how it would work since I couldn’t find anything in their FAQ or support pages.

Wish me luck!

References

References
1 This means you still have access to all the “private” stuff I post from time to time. heehee

Sa-kur-atee!

I’ve noticed a huge upswing in attempts to crack the admin account for my blog lately. Way more than usual. Its no secret I monitor my log-in records. Its an easy way to spot people up to no good. I use a legacy hack from an old version of WP. It records your key strokes at log-in, your IP, how many times you fail to log in, etc. If I notice someone with too may attempts they get a friendly email (if I recognize them) or their IP blocked (If I don’t).

I can’t help but wonder if my last post might have spurred them on. hehehe  I keep a pretty good password on my admin account already. Plus, you only get 5 tries before the system blocks you anyway. [1]courtesy of a little plugin called User Locker  If you can crack it in 5 or less tries, I probably deserve to be hacked.

As an extra precaution, I switched over to a different user account. You probably won’t notice anything different on your end. I figured one extra layer of protection wouldn’t hurt. The administrator account with WordPress comes with a default administrator account and you can’t delete it. That said, there is no reason you have to use it either. You can simply set the password to something incredibly complex and create your own account with admin privileges. Tip: If you use the same plugin mentioned above (or a similar one), incorrectly log into your default admin account until it locks up. Now its permanently locked until you reset your password by email or change it from your newer admin account. Most savvy bloggers do this already. [2]Or they should!  I confess after I switched over to my new database last year I never got around to it. I know, BAD MOBY! lol

References

References
1 courtesy of a little plugin called User Locker
2 Or they should!

Third-Party Logins

Trying to get on the easy log-in bandwagon, I finally found a plug-in that allows (and actually works) users to log in using 3rd party accounts like Google, Yahoo, Openid, Blogger, etc. You’ll notice on the right side of the page a new section called 3rd party log-ins. I tested it and found it to be functional with a few caveats. If you are already a registered user, your log-in will still function from the sidebar or the log-in page.

Caveat #1

If for some reason leaving a comment invokes the captcha test, you will see the captcha but you’ll see some funny code regarding my header failing to load.  Don’t fret, after you pass the captcha just reload my blog page and you’ll see your comment. This was already happening as I use a hack to rotate my header images.

Caveat #2

Sadly,I could not get the Facebook login to work. I tried very hard but it was beyond my understanding and I didn’t have the time or patience to sort thru it. I may revisit it later, but I have removed that option for now. Anyone familiar w/Facebook’s API’s and/or the RPX plugin I’m using, feel free to help a brother out. :p ***Update – I got it working, you can log-in using Facebook. It will not currently post activity to your wall but its a start. ***

Caveat #3

And lastly, none of the social log-ins will allow you access to hidden content on my blog. Gasp! I know. lol  I can’t change that at current. There is no hand-off built in to allow private content on WordPress. Not that it really matters as I haven’t really been adding much of anything in that arena lately.

If you have any trouble, please email me directly at my email link, bottom right of page.

Sub-scribe!

When attempting to leave a comment, you will now notice a tiny checkbox below the “add comment” button.

I added a nifty little plug-in that allows users to subscribe to a particular post’s comments. [1]Keep in mind this has nothing to do with subscribing/registering as a user. So now anytime you comment on a post, follow up comments will be emailed to you, if you so choose. This is a post by post option and you have to post your comment for it to function.

I find this a very useful feature on other blogs as it saves me the effort of having to track other user comments to my replies. I figured why not add it here as well.

I had a little confusion this morning as it only shows the checkbox if you are NOT the administrator. I kept thinking it wasn’t working. Live and learn.

References

References
1 Keep in mind this has nothing to do with subscribing/registering as a user.