flevour unplugged

Ho recentemente registrato un dominio .it su Tophost.it allettato dal basso costo di registrazione. Non c’ho pensato troppo sù, tanto ho pensato “Cosa può andare storto con la gestione di un dominio?”.

Da questo errore di valutazione ho imparato che quando si registra un dominio non è ovvio che si acquisisca automaticamente la possibilità di gestirne i NameServer. Il pessimo TopHost ricade proprio in questo caso, offrendo un tool di gestione del DNS alquanto approsimativo e in cui non è possibile modificare i NS.
Tra l’altro il pannello è abbastanza vulnerabile a attacchi con alterazione dell’HTML (sono riuscito a cambiare un NS giochicciando con Firebug, ma senza ottenere poi risultati interessanti).

I blogger italiani si sono prodigati in guide per puntare il proprio dominio registrato con tophost a Dreamhost o altro servizio di hosting, ma l’unico vero consiglio da dare è: cambiate registrar!
Ogni soluzione su TopHost è semplicemente un workaround ridondante, solo a causa di una restrizione inutile da parte di questo fornitore. La gran parte dei registrar del mondo permette tranquillamente il cambio dei NS del proprio dominio.

Stanco di questa presa in giro non ho perso tempo e ho spostato la registrazione a Gidinet, ottimo prezzo e il suo nome non è “Aruba” (due ottimi motivi).
Ecco invece dove trovare l’auth code per abbandonare TopHost alla svelta.
In bocca al lupo.

Technorati Tags: dreamhost gidinet registrazione dominio tophost

The new Facebook Share button is very cool and offers a new insightful information about your posts: the share count.
Alas, when no one has yet shared your post, the count balloon disappears in thin air. This give you layout headaches, because the widget doesn’t fill a fixed area in the page.
jQuery to the rescue! I wrote this simple code to fix the problem and show a neat “0” count beside the post. Thought I’d share for someone out there in need :)

jQuery(document).ready(function(){
  jQuery("span.fb_share_no_count").each(function(){
    jQuery(this).removeClass("fb_share_no_count");
    jQuery(".fb_share_count_inner", this).html("0");
  });
});

Technorati Tags: article code facebook facebook share javascript jquery js

In un breve brainstorming Denis Torresan e il sottoscritto ci sentiamo di sintetizzare l’attuale (ridente) situazione politica italiana così:

italy.addEventListener('BerlusconiSpeaksPublicly','timelyAnswerFromOpposition',phrase);
function timelyAnswerFromOpposition(phrase) {
  return !phrase;
}

Share your own view about politics in your country in the comments? Any language accepted!

Technorati Tags: php politica

I have been following Leo Babauta’s Zen Habits blog since its first posts, and I must say was it a good time! His posts gets always to the point, but what I like most is he actually puts in practice what he writes. He then reports back on his goals and his successes and failures.
I think one of his best successes becoming a full time blogger. And a natural thing for a famous blogger is to publish a book. He firstly published a series of ebooks, but they weren’t nothing more than a collection of successful posts.
With Power of Less, he goes over the fence and releases a whole book, in real paper!
If you read this by the end of 2008, head over his blog, to learn a 100% secure way to receive a free gift. Otherwise you can checkout the book at Amazon and earn him and me a penny or two.

Technorati Tags: book leo babauta paper the power of less

Tonight I activated a shared hosting account at Crucial Paradigm. The process was fast and smooth and you get to pay only 1$ for the first month of service.

I must say they have a very brilliant and responsive contact service, which balances the fact they have very poor documentation and knowledge base articles. In fact it took me 2 hours from filling the first sign-up to have a working account with SSH enabled and a problem resolved by their support staff. This is quite valuable if you realize that also enabling SSH requires opening a ticket with tech support.
This article should be put in the series “info I wish I could find in Google rather than asking the tech support”. If only I had series in this blog. But I feel like a blog is, among other things, a way to share your experiences in such a way that they will be useful to others. If you still don’t know what I mean, I’ll tell you the most visited pages here are “
Drupal: changing “files” directory configuration setting”:http://flevour.net/blog/drupal-changing-files-directory-configuration-setting or Mapping arrow keys in Vim. You get my point?

So I’m simply reposting the reply I got from the tech guy at Crucial Paradigm in case someone in the future needs this info.

500 internal server error

Hello Francesco,

Permission of files were incorrect which caused the issue. We corrected it. Now domain is loading fine from our end. Please verify it from your end.

As a security measure, our shared servers are php-suexec.

I will give more description on this matter.

When PHP runs as an Apache Module it executes as the user/group of the webserver which is usually “nobody”. Under this mode, files or directories that you require your php scripts to write to need to have 777 permissions (read/write/execute at user/group/world level). This is not very secure because besides allowing the webserver to write to the file it also allows anyone else to read or write to the file.

With PHP running as CGI with suexec enabled your php scripts now execute under your user/group level. Files or directories that you require your php scripts to write to no longer need to have 777 permissions. Your scripts and directories can have a maximum of 755 permissions (read/write/execute by you, read/execute by everyone else). PHP running as CGI/suexec is much more secure than the older Apache module method.

But there are 4 rules for php to work fine on phpsuexec enabled servers. They are

1. .htaccess should not contain any php config values. Such php values should be specified in php.ini.
2. Permissions for all the php files must be 644
3. Permissions for all web directories must be 755
4. Ownership must be of the user and not nobody or any other user.

Technorati Tags: 500 crucial paradigm internal server error

I just committed the first version of Get Satisfaction module to Drupal CVS. It provides the ability to add the Get Satisfaction widgets to your Drupal sites.
Configuration is one easy input: your company code name. After that you get the infamous “Feedback” tab on your site (you can choose which pages display it or which ones don’t). You also get an input filter to add a feedback page anywhere in a content of your site.

Although I don’t expect this module to be widely used, I don’t see the point of keeping it for myself :)
Hope someone out there enjoys it, I’ll keep an eye on the project statistics!

Technorati Tags: Drupal get satisfaction module

I talked about Zoho sign-ing problems just 2 weeks ago and now they seem to have fixed those problems, thanks to Google becoming an OpenID provider. Great news, the login process is now very straight-forward. Only a click is required to login (2 when you first login). Great!

Technorati Tags: google openid zoho

A couple of days ago I wrote a positive (dare I say, enthusiastic) review of the account creation process at Zoho Mail. Using Google Account you get to sign-up in a super-fast way, but there is “a twist at the end” (citation).

Infact, the next time you want to login you either need to:

• sign-in with Google Account again. This will require you to grant access to Zoho again and again each time you login, making the identification a 3 steps process;

• sign-in with Zoho username (which you have selected when creating your email) and a password (which you don’t have).

As you can’t sign-in with a password you don’t have, you either need to:

• go through the password reset procedure, which you can find in the Zoho Account page. A password reset link will be emailed to you so that you can get to choose a new password. Note that you need to be logged in through Google Account (the only way to sign in you have at the moment), then go to Zoho Account and then choose a very counter-intuitive option (resetting a password you never chose) to start the whole process;

• go through the forgot password procedure, which asks you for an “Email ID” without further clarifications: is it your Zoho Email ID or the one you used to sign-up? Obviously it’s the latter, but nonetheless

We, as web developers, should put more and more attention to improve the experience of our users, expecially those who dare to try new (or easier) identification methods. Yesterday Yahoo published a research on the introduction of OpenID to its users and it contains no good news.

Technorati Tags: google account signin user experience zoho mail

Today is October 15th, aka Blog Action Day 2008
As I’m busy writing my thesis, I haven’t had the time to write anything deep here. See the Featured Posts section for some insightful articles.
Have a nice day. You too.

Technorati Tags: blog action day poverty

I had a quick inspiration to check out the code Zoho Mail uses to implement the autocomplete feature that amazed me. This allowed me to get familiar with Firebug Javascript debugger.
On Settings->Common Settings->Mail accounts the field “Email ID” calls “confAccount(this)” when an /onblur/ event is triggered on it.
This little function checks whether the email is a valid GMail, Zenbe or Aol address and configures the SMTP/POP3 server addresses and ports automatically.
Have a closer look to the function loading the JS file and searching for “confAccount”.

Technorati Tags: analysis code javascript zoho mail