Categories
Technology

CodeIgniter 2.0

CodeIgniter
CodeIgniter

Akhir bulan Januari kemarin (ya, ini memang basbang), EllisLab merilis versi 2.0 dari CodeIgniter, framework PHP bikinan mereka. Ada yang spesial di rilis kali ini. Sebab ini untuk pertama kalinya CodeIgniter ikut digarap oleh orang-orang di luar EllisLab. Memang sejak Desember kemarin EllisLab mengumpulkan orang-orang di komunitas CI untuk bergabung & membentuk tim “CodeIgniter Reactor” yang nantinya akan menjadi core developers CI.

Pada akhirnya, hal ini akan menjadi seperti hubungan antara Automattic & WordPress. FYI, sejak lama platform CMS WordPress memiliki tim developer sendiri yang bertugas mengembangkan kode-kode WordPress. Automattic sudah tidak bertanggung jawab lagi terhadap perkembangan WordPress, seluruhnya sudah dilepas kepada tim tersebut. Mereka hanya fokus ke bisnis mereka sendiri.

Hal ini jelas menjadi kabar baik bagi pengembang yang menggunakan CodeIgniter. Sebab nantinya mereka akan bisa ikut memberikan sumbangsih lebih terhadap perkembangan CI tanpa terus bergantung kepada EllisLab.

Categories
internet Technology

How to Create Twitter Bot using OAuth

Twitter has announced to shut down the Basic Authentication API on August 31st and recommend Twitter application developers to migrate their apps to OAuth Authentication. What about bots? That’s the same. If you have bot created using Basic Authentication, then you should migrate your bot to OAuth. Here’s how, but first..

What is OAuth?

OAuth is a new authentication method that doesn’t use plain username & password to authenticate. OAuth uses a pair of tokens to check your credentials, therefore you don’t need to worry about leaking your password. These tokens are unique per user and per application. For further info about OAuth, check http://oauth.net/

So how?

Categories
Blogs internet

Blocks the Annoying goooogleadsence.biz Iframe

Hey, in the middle of my work finishing the Smells Like Facebook Theme, I realize that somehow my blog always load something from http://goooogleadsence.biz/. The browser status bar always show “Connecting to http://goooogleadsence.biz/” every time I load my blog page. I thought it is my ads script. But after I check, it isn’t. Then scan blog directories and found some malicious script in some files like this

echo “?click=7B42BF“;

Feeling suspicious, I google about it. Then I find this post: http://www.diovo.com/2009/03/hidden-iframe-injection-attacks/. I finally know that the script was added somehow to my files by a virus. Yes, it is my own mistake. I often connect to my blog ftp to edit themes in a public computers. After I clean all the script from my blog directories and change my ftp password, the script always get back to the files. I don’t know why. I’m very afraid that Google will index my blog as a malicious site because of that script.

Then I got an idea. I made a very simple plugin that will end the execution of PHP script after the theme footer is loaded. So the malicious script will never be executed and the iframe will never shown in the blogpage. Of course, the plugin doesn’t remove the script, it just prevent the iframe for being shown. You’ll still need to remove the script from your files manually (or if you’ve found tool to do it). This plugin also useful in case the script get back to your files somehow after you removed them.

You can download the plugin here. It is still in beta version, so if you found some bugs, please report it here. Oh yes, you’ll need to make sure that your theme have a call to wp_footer() function right before </body> close tag.

PS: some of Joomla users have found the tool to remove the script, but.. it has a price, not free. Thanks God, I’m using WordPress..