Comments for Blog :: Sune Vuorela

Comment on Announcing Rawatar – Qt5 libravatar client library by Francois Marier

Francois Marier — Thu, 28 Mar 2013 15:21:33 +0000

Regarding a GTK+ implementation, you may want to have a look at the pidgin plugin for it: https://code.google.com/p/pidgin-libravatar/

Comment on Announcing Rawatar – Qt5 libravatar client library by Anonymous

Anonymous — Sun, 24 Mar 2013 21:52:23 +0000

Now we just need a GTK+ implementation so we have both of the common toolkits published, so most common Linux desktop apps can easily use libravatar. Given the common convention of adding a “g” prefix, we could call it “gravatar”. :)

More seriously, “glibravatar” actually works rather well as a name, since it’ll be based on glib.

Comment on Simple Libravatar service by Jonathan

Jonathan — Fri, 22 Mar 2013 09:48:06 +0000

Modern spam filters work best when they receive a lot of data – especially obvious spam. Therefore there’s no point in hiding your email addresses any more, at least if you’ve got a half-decent filter set up.

Comment on Simple Libravatar service by Sune Vuorela

Sune Vuorela — Wed, 20 Mar 2013 10:51:06 +0000

Not allowing indexing is trivial and kind of left as an exercise to the reader. I just did touch index.html in a couple of directories.

Comment on Simple Libravatar service by Michal Čihař: Libravatar support in Weblate | PHP World

Michal Čihař: Libravatar support in Weblate | PHP World — Tue, 19 Mar 2013 17:02:46 +0000

[...] some time, Weblate was showing avatars for users. Just as I’ve discovered Libravatar – free and federated alternative to Gravatar, I thought it would be better [...]

Comment on Simple Libravatar service by Bob

Bob — Tue, 19 Mar 2013 16:47:03 +0000

Instead of “ls | while read file” which isn’t safe for files containing whitespace use the shell itself. And quote your variables! This is safer.

for file in *; do test -L “$file” && rm -f “$file” ; done

Comment on Simple Libravatar service by Francois Marier

Francois Marier — Tue, 19 Mar 2013 16:10:51 +0000

In my mind, the redirection policy should be mostly up to the domain owner. For example, a company could choose to always serve their logo when a client asks for a non-existent hash, and not implement any redirection (e.g. to Gravatar) at all.

Comment on Simple Libravatar service by Anonymous

Anonymous — Tue, 19 Mar 2013 15:31:01 +0000

Verified-valid email addresses have higher monetary value to spammers than random email addresses that may or may not work. Any approach that allows a spammer to filter their list lets them make more money selling that list or sending spam. I’d find it surprising if spammers don’t already use gravatar to validate individual email addresses, so using libravatar seems trivial; I’d just suggest not allowing indexing of the email addresses on a domain because that makes mass scraping so much more trivial and gravatar didn’t allow *that*.

Comment on Simple Libravatar service by sune

sune — Tue, 19 Mar 2013 15:05:58 +0000

Do you really think that spammers are going to use a service like libravatar to figure out if a email might be valid and then send to it, rather than just sending and figuring out that way if the email might be valid?

Comment on Simple Libravatar service by Anonymous

Anonymous — Tue, 19 Mar 2013 11:56:43 +0000

Hmmm. One problem with libravatar if it takes off: it would seem to make it trivial to seek out working email addresses to spam. At a minimum, you should not have indexing turned on, but even then this allows email address verification.