I use Akismet to filter out spam comments here, and I’ve seen a few different strategies the spammers employ. There’s the “Cool post! You should Digg it” (in both English and Spanish – tengo que Digg), there’s the “this post helped me on my class project,” there’s the pure jibberish – “xajdjhesbjsb sjhsjhrhjshwru skjskjrijsjs.” But this is a new one I’ve seen over the past couple of weeks:
Stupid things like this crack me up, not sure why.
I never like typing a password into a non-SSL site, no matter how trivial it is. In order to give my own site this ability I simply used mod_rewrite to force requests to WordPress’s admin pages to go over SSL.
That’s pretty much it. If your request starts with “wp-” it’ll redirect you to the same URL, but starting with https://. Problem solved. You do need to make sure you have an SSL VirtualHost pointing to your WordPress DocumentRoot so that https://yoursite.com goes to the same place as http://yoursite.com.
WordPress is doing something weird now. Yesterday the head of the site was not in all caps, and today it is.
Ok, I figured it out. I guess I must have installed some new font on this computer – “Trajan Pro” – and the header was showing in that font. I deleted it from the stylesheet and now it defaults to Lucida Sans Unicode, which is what I wanted.