So, it turns out that the rush released Rails 1.1.5 doesn’t actually fix the security problem. Worse, it seems that the problem lies somewhere in the nest of serpents that is the routing system. It turns out that some of the magic that lets everything work in nice ways doesn’t do enough to make sure that malicious people can make everything work in nasty ways.

If you were to ask me what my current preoccupations were, the top three would probably be breadmaking, ruby and folk music. This last week has been a pretty decent week on all three fronts.

Oh, I say. It seems that Sam Ruby is another member of the “Ruby ’til [Perl] 6” club.

Are you reading Mark Dominus’s Universe of Discourse and if not, why not?

Yay! Not only have we released Typo 4.0.0 at last (big news: massively improved feedback spam protection and much, much easier installation), but I’ve brought this blog back to the bleeding edge (complete with further improved feedback management).

The ‘gizzajob’ post

In the unlikely event that you’ve been wondering where I’ve been this last while, I’ve been busy with one of those long dark teatime of the soul affairs, all the while baking bread.

<typo:flickr img=“151759163” size=“small”/>

Martin Fowler has posted an overview of the ways in which different projects can handle Code Ownership on his blog. As usual with Martin, it’s a thoughtful piece coming down strongly in favour of an agile solution (Martin argues persuasively that strong code ownership makes it much harder to improve the code - or make it worse, but let’s assume that we know what we’re doing).

Once upon a time, when the world was young, Apple announced their 17 inch G4 Powerbook with a huge screen and blisteringly quick 1GHz G4 PowerPC processor.

If you’ve been following typo development on the trac you’ll have seen that I’ve been niggling away at the Typo sidebar system and I haven’t finished with it yet. The changes waiting in my current SVK repository are rather substantial so I’m going to give you a preview of them here.

Some time ago, around the time of the Typo themes contest, someone, I think it may have been Scott Laird, wrote a nifty little sparklines textfilter.

Rails 1.1 got released on Sunday.

I’ve been working on Typo this weekend, mostly going through open tickets and deciding whether to apply patches.

I really didn’t expect to be reading Linda Smith’s Obituary in this morning’s Guardian. We were only talking a couple of days ago about how effortlessly funny she was.

Remember the new camera I ordered back in December? It finally arrived last Friday, about a month after I expected it.