• Home
• Blog
• Training
• Consulting
• AdWords™ Seminars
• About
• Contact

Subscribe

• Recent Posts

  • The AdWords Seminars for Success are Coming to the Bay Area
  • Google Chrome, Flash fixes for browsers (must read), and Browser Test Info
  • Q&A: Does the content network follow location targeting rules?
  • The AdWords™ Seminars for Success Tour is stopping in Toronto
  • Google AdWords Quality Score Factors Chart Updated

• Categories

  • Analytics
  • Conferences
  • eBooks
  • eWhisper's Notebook
    • Blogging
  • Local Advertising News
    • State Advertising Info
    • Vertical Marketing
  • Marketing Glossary
  • Mobile
  • PPC Info
    • AdWords Keyword Tool
    • API
    • Contextual Advertising
    • Creating PPC Accounts
    • Google AdWords
    • MSN PPC - adCenter
    • Other PPCs
    • PPC Tracking
    • Yahoo Search Marketing
  • PPCall
  • Search Engines
  • Speaking Events

• Links

  • AdWords API Blog
  • Ask Jeeves Blog
  • AWS Blog
  • Best Chicago Programmer
  • Google Base Blog
  • Google Blog
  • Google Code
  • Google Friends
  • Google Press Releases
  • Google Reader Blog
  • Google Sitemaps Blog
  • Inside AdSense
  • Inside AdWords
  • Kelsey Group Blog
  • MSN Blog
  • Stuntdbl’s Blog
  • Webmaster World
  • Yahoo Blog

Be Careful of Security Issues when Using Wiki’s and Blogs with Trackbacks

When a website automatically posts comments to another site it is called a trackback. Essentially, Blogs and many Wiki’s automatically post comments on a website’s page (when comments are enabled) when one links to that particular page. In most cases, the trackbacks and comments are used to create a discussion around a particular subject. Hence why Wiki’s and Blogs are key to developing an internet community.

However, wiki’s are also often used in development projects, and if you are not careful with the security settings, you can give away your development secrets.

A few days ago, a new comment was posted to this blog from a url that breaks down into: ClientSite.AdvertisingAgencySite.com/DEV/ProjectName which linked to my post on using AdWords Dynamic Parameters in URLs. Without even reading the comments, I knew that Company A was launching a new AdWords campaign and which company would be running the show. However, I also received comments on the page past the URL which told me even more about the ad campaign.

My guess is that the Wiki being used had trackbacks enabled and no one checked the security settings before posting many secrets to the Wiki (which is behind a password protected page).

Then, a couple days later, another trackback showed up from a completely different source which was CompanyName.AdvertisingAgency/NewProject from yet another Wiki. After checking that the entire site was password protected, I was sure this was yet another agency launching another company’s ad campaign.

In both of these cases, I’m being passed secrets about ad campaigns which I’m sure the agency and the clients would not be happy to know. Someone didn’t do their homework about how to set up, run, and keep a Wiki secure.

If you’re running a piece of software with trackbacks (which could be a blog, wiki, forum, etc), and you do not wish anyone outside of the password protected area to see what you’re writing about - disable the trackback and ‘ping’ ability of the software package.

Related Information:

• Primer: How to host your own online applications for non-techies
• Overture Launches Overture Local
• Add a contact form to Wordpress
• Microsoft to Power Blogs through Xbox
• The SEMMYS, Controversy, and Analytics Blogs You Should Read

Comments

Google AdWords
Seminars for Success

Learn about Google AdWords from experts hand selected by Google.

These seminars will educate advertisers on the creation and management of successful AdWords campaigns.

Learn More about the Seminars:

Seminar Information
Denver Seminar
Toronto Seminar
San Francisco Seminar
Information provided by Google.com

Brad Geddes

Brad Geddes aka eWhisper

Leslie Clark

Leslie Clark

Other Memberships

Copyright © 2008 bg Theory, LLC ·

Sitemap