Comments on: Wordpress 2.5.1 upgrade http://www.ubercharged.net/2008/05/05/wordpress-251-upgrade/ Tales of Team Fortress 2 pwnage and other hilarity Fri, 16 May 2008 14:32:59 +0000 http://wordpress.org/?v=2.5.1 By: madlep http://www.ubercharged.net/2008/05/05/wordpress-251-upgrade/#comment-2335 madlep Tue, 06 May 2008 08:32:59 +0000 http://www.ubercharged.net/?p=313#comment-2335 Had a look at the source code for WP-Cache. Seems that it does a separate cached page for each user with a distinct email address if they have been to the site and posted a comment before. Problem is, both you and wizarD posted with no email address, so you get the same version of the cached page. Whoever accesses the page first after it expires and regenerated (once an hour), gets their cookie details hardcoded into the cached version of the page for all users with the same email address (both having a blank email address is counted as the same). The cached page should really be uniquely generated based on the author name and/or website URL as well to avoid that. Dunno if that's something that has been introduced in WordPress 2.5.1, or if it's just been like that all along. Will have to do a bit of offline testing of it, but I think the fix should be reasonably simple. Had a look at the source code for WP-Cache. Seems that it does a separate cached page for each user with a distinct email address if they have been to the site and posted a comment before.

Problem is, both you and wizarD posted with no email address, so you get the same version of the cached page. Whoever accesses the page first after it expires and regenerated (once an hour), gets their cookie details hardcoded into the cached version of the page for all users with the same email address (both having a blank email address is counted as the same).

The cached page should really be uniquely generated based on the author name and/or website URL as well to avoid that.

Dunno if that’s something that has been introduced in WordPress 2.5.1, or if it’s just been like that all along. Will have to do a bit of offline testing of it, but I think the fix should be reasonably simple.

]]> By: madlep http://www.ubercharged.net/2008/05/05/wordpress-251-upgrade/#comment-2334 madlep Tue, 06 May 2008 07:46:25 +0000 http://www.ubercharged.net/?p=313#comment-2334 Hmmm, sounds like some Caching weirdness going on there. Hmmm, sounds like some Caching weirdness going on there.

]]> By: MaxC http://www.ubercharged.net/2008/05/05/wordpress-251-upgrade/#comment-2333 MaxC Tue, 06 May 2008 07:28:29 +0000 http://www.ubercharged.net/?p=313#comment-2333 One thing i notice when writing a comment, is that my name is set to wisarD. and my Website is set to http://gibsrus.com (the same as the person above me). It's like a cookie has been written to my computer with his information. Strange. Well, I still can write my own details, so I guess it's not a big deal. One thing i notice when writing a comment, is that my name is set to wisarD. and my Website is set to http://gibsrus.com (the same as the person above me). It’s like a cookie has been written to my computer with his information. Strange.

Well, I still can write my own details, so I guess it’s not a big deal.

]]> By: wizarD. http://www.ubercharged.net/2008/05/05/wordpress-251-upgrade/#comment-2332 wizarD. Tue, 06 May 2008 06:29:35 +0000 http://www.ubercharged.net/?p=313#comment-2332 For sure. :D For sure. :D

]]>