Manton and I are still at it. We’ve heard the feedback, some of it lukewarm, some of it intentionally discouraging, but most of it extremely enthusiastic.

We’re proud to announce the immediate availability of episode 3, where we talk about WWDC, MobileMe, iPhone 3G, and a bunch of relatively unrelated stuff.

Check us out!

A few releases back, WordPress had a vulnerability that many spam injection … bastards … took advantage of. I am not too proud to admit that I was myself a victim of this vulnerability, even though I update pretty religiously to the latest release of WordPress.

I noticed over the past few weeks that even though I had updated to the latest WordPress release, which is supposed to be free of vulnerabilities, I was repeatedly having spam links injected into the footer.php file in my theme. Frustrated, I went to some of my friends on the WordPress team, and they pointed me at a great article from Donncha O Caoimh:

Unfortunately for some who did upgrade, it was too late. The hacker slimeballs may have known about the security issues before we did and went about their merry way breaking into blogs and websites, grabbing usernames and passwords, and planting backdoor scripts to log them in again at a later date.

In this article, Donncha gives an extremely thorough and authoritative treatment of the problem. If you have been the victim of this nasty attack, or even if you don’t know whether you have, it would be worthwhile to review the article and see how your WordPress install stands up to the scrutiny suggested there.

MarsEdit 2.1.4 is now available for download. I’ve got some much bigger changes on the way for MarsEdit 2.2, but these are some short-term fixes I wanted to get out even sooner:

MarsEdit 2.1.4

• Add a dock menu item for easily starting a new post
• Support uploading to specific Picasa album for Blogger users
• Prevent dragging a URL to preview window from loading that URL
• Fix display of tags in main window preview
• Safeguard against bad URLs that could cause a crash when refreshing

If you’re a Blogger user and want to take advantage of the new “specific album” feature, just type in the name of the album in the Media Manager’s Upload pane, where it says “in”.

Enjoy – and as always, let me know if you spot any problems!

Paul Kim of Noodlesoft participated in the MacUpdate Bundle, putting Hazel up for sale along with a number of other applications, for a low-cost bundled price.

In a recent blog post he goes into glorious detail about the motivations for participating, the pluses and minuses, and after all is said and done, whether he would do it again.

I think this kind of honest analysis of the increasingly common software bundle promotion should be helpful both for developers who are considering getting involved with one, and also for software consumers who are curious to learn more about what developers are thinking about when they weigh their options in participating.