K-Squared Ramblings

Avatars!

Since Gravatar was bought by Automattic, the service has been a lot more stable. I had already re-enabled them on this blog before WordPress 2.5 came out with built-in Gravatar* support.

Not everyone has a Gravatar, though, so many comment threads just show the default icon, over and over. Not only does this look boring, but it misses out on the whole point of using an avatar: providing an easy at-a-glance visual distinction between each author.

When I first used Gravatars on this site, I set it up to use a giant first initial as a fallback. Now, I’ve been trying out two plugins that will automatically generate avatars for people who don’t have their own:

• Wavatars builds up cartoony faces using geometric shapes. Interestingly, it’s by Shamus Young, author of the screencap-based webcomic DM of the Rings and writer of Chainmail Bikini.
• WP_Identicon sounds like a Transformers faction, but produces a geometric pattern as inspired by Don Park’s Identicon, which built a similar image based on a visitor’s IP address. The same author also has one that generates cartoon monsters, which appears to be one of the earliest implementations of this concept.

These plugins will use a Gravatar if available, or else generate an image based on the commenter’s email address (if supplied). That means each comment by the same person should use the same image. Other blogs using the same plugins at default settings will come up with the same avatar for each commenter, as well. The images are stored in a cache, so each only has to be generated once.

Once I made sure both plugins worked, I showed the results to Katie. We ended up settling on Wavatars, since faces are easier to recognize than patterns. (Though the patterns are really cool!)

You can try out the automatic avatar by leaving a (relevant, please!) comment on any post. Or you can run over to Gravatar and set up an icon of your choice!

*What’s a Gravatar? The intent is to be a Globally Recognized Avatar. You upload an image to Gravatar and associate it with your email address. Then any site with Gravatar support will be able to display your image next to your posts. Right now it’s mostly used in blog comments, but it could easily be worked into forums, wikis, etc. The Gravatar Blog mentions other uses they’ve seen people apply it to, such as plugins for Thunderbird and the Mac OS X Address Book

Note: I did notice one important drawback to the WP_Identicon plugin: it’s very inefficient at generating the images. When I first visited posts with long comment threads, like Another One Bites the Dust (174 comments) and Songs Not to Play at a Wedding (87 comments), WP_Identicon took over a minute to generate all the icons and maxed out the server’s CPU. Sure, the images are cached, so it’s only really an issue when you first install the plugin (unless you get a lot more people commenting at once than we do here), but to compare, Wavatar on an empty cache finished the same posts in just 4 seconds and 2 seconds, respectively.

Upgraded to WordPress 2.5

I’ve upgraded to the just-released WordPress 2.5. The new admin interface is very nice, especially the ability to upload more than one image at a time (though I think they might want to test uploading a single picture a bit more [edit: Maybe it's specific to Firefox 3 beta 4---on uploading one image, it shows the control panel three times instead of just once.] [edit2: Maybe it's on the Firefox beta, but the Linux version of Flash Player. It works just fine on the same version of Firefox on the Mac.] [edit3: It's definitely the Linux Flash Player; I tried it with Opera on Linux and had the same problem.]).

I’ve adapted my theme to use new built-in support for Gravatar and optimal titles instead of the plugins I was using before.

All the stuff you’ll see appears to be working just fine so far. A couple of minor glitches with some admin plugins (WP-Amazon takes two clicks to show or hide instead of just one), but no biggie.

There was one issue during the upgrade. I’ve been using XCache for WordPress to improve site performance. I was asked for the XCache admin login & password during the database upgrade. I couldn’t remember them, so I renamed object-cache.php and hit “cancel” on the password prompt, but it seems to have upgraded everything fine.

The one really annoying thing is that the Bad Behavior anti-spam plugin conflicts with the new media uploader (it’s already on the WordPress 2.5 Plugin Compatibility list). There are two issues. First, “Shockwave Flash” is apparently used by spambots, so it was listed in blacklist.php (code 17f4e8c8). Second, it seems Flash is mixing and matching HTTP 1.0 and HTTP 1.1. If I remove it from the blacklist, it trips condition a0105122, which indicates an Expect header appearing in an HTTP 1.0 request. Removing that test allows it to upload, but the test catches a lot of spam…

Edit: I tried out the visual editor again, as it was billed as “it doesn’t mess with your code anymore.” Sadly, it does mess with your code. It disappeared an image in one post, and it still replaces semantically-neutral <i> tags with <em> tags, even when you’ve entered them manually. <em> is for emphasis. When you italicize a book title, you are not emphasizing it. By replacing one tag with the other, it adds inaccurate semantic meaning. This is just as incorrect as using <h5> to get small text instead of using it for a level-5 heading.

What’s Dynamic About It?

In my post on Webslices, I mentioned that the home page of my Flash site uses server-side includes instead of a static HTML file. But it doesn’t really update that often: maybe 3 or 4 times a month. Is it really worth building that file dynamically? Should I switch from SSI to something more powerful, like PHP, that will let me add headers so that repeat visitors won’t have to re-download the whole page except when it’s actually different? Or should I switch to a static file, with the same benefits but simpler? What am I actually building, anyway?

Looking through the code, I find:

Browser upgrade banners. People using old versions of Firefox (currently 1.5 or older) or Internet Explorer (currently 5.5 or older) get an “Upgrade to Firefox 2″ banner instead of the thumbnail of the current issue of the comic. This is just as easily done with JavaScript—and is done with JS elsewhere on the site. (I used to make some minor adjustments for other versions of IE, but I converted them all to conditional comments a while back.)

Last-modified date in the footer, pulled from the actual file. I’ve already got a script to update this in the static files, so it’s just a matter of adding it to my general update script. A two-minute, one-time change and I’ll never notice the difference.

Latest posts from this blog. Probably better done with an iframe, or maybe using AJAX. Drawback: either method would mean an extra request from the client. On the plus side, repeat visitors would be able to re-use the rest of the page, and only download the 5-item list.

Unique-per-day spamtrap addresses, hidden where harvesters might pick them up. But only a few of them still accept mail and feed it to filters. Mostly, they just waste spammers’ resources. I could easily either get rid of them or change the script to generate a new address with each update instead of each day.

So really, there isn’t much stopping me from using a static file for the most-viewed page on the site, with all the attendant savings in system resources, bandwidth, etc.

On the other hand, I keep contemplating switching to a database-driven system for the whole thing, which would make any changes now meaningless. But since I’ve been thinking about that since around 2000 or so, and haven’t changed it yet, that’s not exactly a blocker!

Update (March 30): I’ve made the conversion to a static file. The blog posts and browser upgrade banners are now done client-side (and run after the rest of the page is loaded), the last-modified date is part of the pre-processing script, and I just removed the daily spamtrap addresses. Now to see whether it actually improves performance.

Spam Switch

With the recent rash of Trackback spam, I finally bit the bullet and am now experimenting with Akismet in addition to Spam Karma. I’m not sure how well they work together, or, at this point, which plugin processes the comment first. Update: I’m trying Akismet on its own for now. Or, more precisely, Akismet as the sole second line of defense. Bad Behavior is still holding the front line.

Update (Feb 14): I’m now back to using Spam Karma 2, but with a plugin that uses Akismet as one of the score components. This seems to be working well, as SK is able to block the ridiculous stuff (100 porn links in one comment, etc.), and Akismet is able to catch the trackback spam that’s been passing SK2 by temporarily including an inbound link.

The big problem I had with Akismet was that aside from the age of the target post, the blocked comments weren’t sorted or filtered in the admin interface. I was having to look through ~30 comments a day for false positives. Spam Karma will show only the borderline comments by default, and uses a table structure that makes it easier to skim.

This way, though, I get the proverbial best of both worlds.

Comment fix

Oops… Looks like WP Super Cache was inadvertently preventing comments from actually posting for the past week or so.

Sorry about that…

Survived a Mild Slashdotting

This server weathered its first Slashdotting last Friday, or at least the first I’ve noticed. But then, it was a mild one compared to some reports I’ve seen.

While writing up my commentary on IE dropping WGA last Thursday, I realized that the original story was perfect for Slashdot. It had Microsoft, anti-piracy methods with privacy concerns, Internet Explorer and browser marketshare. So I looked to see if the IE team’s post was on the Firehose already, didn’t see it, and wrote up a quick submission. I also realized that I had an opportunity to plug the Alternative Browser Alliance in the text of the submission—something that I hadn’t been able to do on previous stories I’d submitted. (This is my 6th Slashdot submission to be accepted.)

So I submitted it Thursday evening, got a couple of dozen hits from the Firehose, and it got accepted around 11:30 pm, local time. I took precautions in case the traffic spilled over onto the blog, like turning on WP-Cache and disabling a few plugins, then went to bed. Read the rest of this entry »

Speed Force

I just discovered that the domain name speedforce.org was available. I couldn’t pass it up. Now I have to figure out what to do with it.

I’ve toyed with the idea of separating out all the Flash stuff from this blog and creating a dedicated comics blog. I’ve also thought about renaming the site, Flash: Those Who Ride the Lightning (it’s an awkward name*, no matter how you slice it), though it’s got enough mindshare that I’d rather just simplify it to “Ride the Lightning.”

Any suggestions?

*Come to think of it, I have a history of picking names that seem perfect at the time, only turn out to be awkward later on. The Alternative Browser Alliance seemed like the perfect name, but I got so sick and tired of typing www.alternativebrowseralliance.com that I registered altbrowser.net just so I could use it more easily.

Updating Again: WordPress 2.3

Well, I’ve updated the site to Wordpress 2.3. Let me know if anything’s broken.

The closest thing to a problem was just that I didn’t know I had to run the tag importer manually. I assumed it would be run during the upgrade. No biggie, I went to Manage/Import, ran the importer for Bunny’s Technorati Tags, and waited a few seconds. (I already knew I’d have to adjust the theme.)

I guess fewer things can go wrong if it waits for you to tell it which tag format to import, the one time you actually need it to, instead of having the updater try to guess between 5+ structures (and no structure!) every single time you update for the foreseeable future.

Anyway, I’ll probably be trying out some new themes over the next few days, so don’t be surprised if the site changes appearance wildly. It seems about time for a change.

Theme Testing:

• Blue Box, with a custom logo & splash image (one of our photos from Waikoloa) & some minor tweaks. (Sep. 24)
• Still tweaking Blue Box. Trying to condense the extraneous splash image with the title bar. (Sep. 25)
• I think I’m going to stick with this theme for now. I’ve added some workarounds for IE6 to (mostly) handle the changes I made. (Sep. 26)

To do: small-screen compat, put recent links back in the sidebar, fix the duplicate IDs in the Links widget. Maybe clean up the 60-item list of monthly archives. (Sep. 27)

• Cleaned up the giant archive list via Flexo Archive Widget. Unlike others I’ve tried, this one won’t hide all the links if JavaScript is disabled. (Sep. 29)

K2R is 5 Years Old

I just realized that as of last week, this blog has been online for 5 years.

Crazy, huh?

This is the 1,398^th post. We’ve got 2,307 comments at the moment, including pingbacks. Typical traffic these days seems to run around 650-700 views on weekdays, 550-600 on weekends. Most of it seems to be people searching for images.

The top-viewed posts lately have been:

1. Songs Not to Play at a Wedding (Normally #2, but it got something like 3000 hits from StumbleUpon last week.)
2. Comic Con 2003
3. Philosophy of Time Travel
4. Creative Computer Names

We’ve Been Stumbled Upon

Wow! Songs Not to Play at a Wedding has been one of our more popular posts for a long time, and I’d seen hits start coming in from StumbleUpon, a social bookmarking site, about a week ago. But that was a trickle. I wasn’t prepared to check my stats at lunch today and see 1,112 visits from StumbleUpon (here’s the review page) since 5pm yesterday (WordPress’ daily stats rotate at midnight GMT), with another 632 the day before. Read the rest of this entry »

Patch…Friday?

I suppose it’s best to release the security fixes when they’re ready, because any time you pick is going to be inconvenient for someone, but lately it seems like Friday is suddenly in style.

Last Friday saw the release of PHP 5.2.4, on the Friday before—in the US, anyway—a 3-day weekend. This morning Apache released security updates for all three supported branches of their webserver. And this evening—yes, Friday evening—WordPress 2.2.3 came out.

Which reminds me, I’m going to have to start looking at the betas for WordPress 2.3. I think it’ll be a good time for a redesign. Maybe pick a new theme and tweak that one, maybe try my hand at actually designing one. I wonder if the new tagging system can import Bunny’s Technorati Tags.

Upgrading again: WordPress 2.2

Well, WordPress just released version 2.2 with a bunch of new stuff. I’ve upgraded the blog, and things seem to work so far — even on PHP5! They also included my workaround for the RPC bug in PHP 5.2.2.

I also upgraded the comments preview plugin, which now uses the actual post+comment page to show you the preview instead of showing a page that’s almost the same, but sorted in reverse.

At some point I need to test current versions of WP-Cache again, and see if WordPress’ internal cache works with PHP5 yet. And maybe it’s time to try a new theme. I’ve been tweaking this one pretty much since WP 2.0 came out.

Automattic Stats, or PHP 5.2.2 vs. WordPress XMLRPC

Experimenting with the new Automattic Stats Plugin that uses the WordPress.com statistics infrastructure to track traffic. So far, so good… except for one problem. Titles and links are missing from all the “most visited” posts. They’re just listed as numeric IDs.

Update: Actually, today’s posts seem OK. The plugin seems to just send the blog ID and post ID. I’ve been trying to figure out how the central server is retrieving the permalink and title. It doesn’t look like Bad Behavior is blocking it. And it doesn’t seem to be using the RSS feed, since posts that are still on the front page (and presumably still in the feed) are also showing up as numbers. *grumble*

Update 2: I just noticed that all of the number-only posts show the same placeholder graph showing “Region A” vs. “Region B” for 2003-2005.

Update 3: It’s a problem with WordPress’ XMLRPC interface, and affects other uses (like connecting with Flock). I’ve got a workaround, though (see comments).

Update 4 (May 10): Thanks to the pingback below from dot unplanned, it’s confirmed to be a bug in PHP 5.2.2. With any luck, the workaround will cease to be necessary when the next PHP bugfix is released.

When tags vanish

Since upgrading to WordPress 2.1.3 a few days ago, I’ve noticed tags disappearing on some of my posts. I currently use Bunny’s Technorati Tags, which stores them in custom fields.

It turns out there’s been a known problem since WordPress 2.1 was released two months ago. Some plugin hooks have changed, and plugins that used to only get called during post editing are also getting called during comment publishing. I grabbed an updated version of the plugin, and it seems okay now.

Oddly, most (but not all) tags survived unscathed during the two months running earlier 2.1 releases. It’s only since moving to 2.1.3 that it’s been consistent. Oh, well, at least it prompted me to find the fix.

Firefox too mainstream for Alternative Browser Alliance

I’ve been thinking about this for a while, but it’s time to refocus the Alternative Browser Alliance. Mozilla’s Asa Dotzler has referred to Firefox and Internet Explorer as the “mainstream browsers” for more than a year now, and it looks like that’s become true.

The web is no longer an IE monopoly. It’s become an IE/Firefox oligopoly. Firefox is no longer an alternative web browser. It’s sold out, its ads are everywhere, and it even allows people to build Firefox-only code.

So, starting today (April 1, 2007), the Alternative Browser Alliance will no longer promote Firefox.

So what will replace it? I thought about Opera, but most of its install base is on cell phones and PDAs, and we all know the mobile web browser is dead, right? Safari? Well, it turns out that WebKit is shutting down.

So the site will be putting its weight behind iCab. It’s as alternative as they come, and it’s guaranteed to remain that way (since it won’t run on Vista).

Update: Yes, it’s an April Fools joke.