i have a car i'm selling, if you are or know anyone in the market. it's a red 1988 honda accord two door hatchback stick shift with about 67,000 miles. i think it's a good, cheap car, but i don't know much about cars. i've had it for about 9 months and had only a few minor problems with it, but i just inherited a nicer car so i'm selling it now for $1000. the blue book price is $1580. you'd need to pick it up in bloomington, il, and ideally you'd be someone i've spoken to before. email me for more details if you're interested.

 

last night i could be heard saying "i'm not too concerned about security." this morning i got an email from yet another kind visitor pointing out that my .inc files, including the one with all my passwords, were being presented by the server as plain text when called directly. so anyone could get my database password, my del.icio.us password, and my google api key. suddenly i became concerned about security.

i added the following line to my .htaccess file to make the server parse .inc files just like .php files (as my previous server did):

AddType application/x-httpd-php .inc

which solved the problem. then i changed all my related passwords. no harm done.

so now i'm back to not being concerned about security. after recovering from my initial freak-out mode, i realized that access to the database is restricted to certain IP addresses, so the password alone will not do much unless you are one of my neighbors sharing my IP address. and my del.icio.us posts are now automatically backed up on the links page, so no worries there. and my google api key is pretty much worthless. but still, putting passwords in a publicly-viewable text file is probably not a good idea.