By: phil

phil — Fri, 25 Aug 2006 19:37:50 +0000

I don’t want to get into a hair-splitting contest, but this is an 80% Bloglines issue, in my opinion.

I knew what the risk was when I gave the URL of a not-easy-to-find feed to Bloglines, but their UI is completely misleading. If their UI had been clear enough to indicate that all feeds that I added to their system would become publicly available, then I wouldn’t have added it.

By: Charlie Wood

Charlie Wood — Thu, 24 Aug 2006 18:12:20 +0000

In fact this isn’t a Bloglines issue, or even an RSS industry issue, but rather a Blinksale issue. There are very well-known, simple techniques for securing RSS feeds. Unfortunately Blinksale has decided not to use them and instead employs, “security through obscurity,” which is to say, no security at all.

In their defense, Blinksale isn’t alone. Google Calendar uses the same mechanism to keep your events “private”, as I’m sure do many others.

Comments on: Bloglines, RSS privacy problem

By: phil

By: Charlie Wood