Nate Ritter

@nateritter

Web chef, leader of PerfectSpace

Rotate photo View full size
Screenshot of Twitterank.com's code comments. Pretty lame, and definitely worth changing your password if you used them.

Views 9,936

1987 days ago

Screenshot of Twitterank.com's code comments. Pretty lame, and definitely worth changing your password if you used them.

12 Comments

Realtime comments disabled

katieMCB 1987 days ago

you guys should read the article the creator wrote today, btw.

jwalkerjr 1987 days ago

you could do a lot with Twitter login credentials. For example, do you have a Gmail, Hotmail, Yahoo email account? Lots of people's usernames are the same as the beginning part of their email addresses on those services...and people use the sam

CleanerLife 1987 days ago

I have twhirl running on more than one computer at the same time accessing the same twitter account...

nateritter 1987 days ago

(1) yes, they are code comments. (2) It wasn't on the FAQ page when I looked. This was the index page.

seriousron 1987 days ago

yeah seems sketch for sure, good call putting up the source screen shot. your twitter ranking is 1.68 that is ace in my book

ManFmNantucket 1987 days ago

those are not code comments, its actually text that appears on the FAQ page, which caused me to skip trying it actually

nateritter 1987 days ago

Point well taken (at least for me and so many others). I hope Twitter gets it.

radix33 1987 days ago

If you use Twitter to connect with your clients, having the account compromised can be a black eye.

ochua1 1987 days ago

I believe the author was trying to make a point that must implement OAuth because many sites can do this!

nateritter 1987 days ago

You used to be able to read it on the page, but now it's commented out. Either way, I wouldn't give this person my info.

lauter 1987 days ago

this is exactly what it says on the page. you can read it *before* submitting your info!

LucretiaPruitt 1987 days ago

I stand corrected - didn't look at the source code - but how annoyingly stupid is that? What would you do w/twitter logins?