Not sure if you were aware, but reddit has recently unveiled their new sub-reddit feature, and it's in private testing.

Good effort, though. Might want to have a live feed of all the new stories coming in on the front page, so I'm enticed to join some communities and contribute by finding interesting stories on the front page.

Congrats.

Thank you! We heard about reddit's plans, that's why we launched today. Great idea for the front page.

Having links like /django/78/up/ is a CSRF attack just waiting to happen - you should turn them in to POST forms (preferably with some unobtrusive Ajax) and add a form key to prevent people from tricking other logged in users in to up-voting stories.

We check the HTTP_REFERER to make sure it's coming from linkherd.com.

Form tokens are more robust - some people strip referrers (sometimes even at the firewall level) to prevent information leakage from their corporate intranets.

Weird. Anyways, we changed to form tokens.

That can be easily fudged, can it not?

Yes, but not to do the kind of attack simonw is thinking about. You can't set the header from Javascript or HTML. You can forge it from older versions of Flash, but Flash 9 has enough penetration now that it's safe.

So what's to stop an attacker from downloading an old version of flash?

Only browsers with an old version of Flash installed can be tricked into executing a forged cross-site request. The attacker wouldn't gain anything by installing it on their own machine.

i have my browser configured not to send referrers.

Why?

Are you going to submit this to Reddit?

I'll give you a dollar if you please change the site to use Verdana or some other font than the default you use now. (Please, please!)

Me too. holds out dollar

Great, I've PMed both of you with our paypal info. Could this be a new business model?

Imagine 2+ users, each wanting say, Verdana or not-Verdana, and each giving you a dollar each time you change it.

I created a site for Refactor Phoenix. Once created, I saw that the URL kept the space in the words, but it's encoded as %20.

In retrospect I wish I had entered the name differently so that I could have avoid that space.

Really, I want to have it both ways: a title of Refactor Phoenix, but a url with no gaps (/refactorphoenix).

I saw no way to edit this, or to delete the network.

Soon we're going to make it so that /refactorphoenix works, along with /refF%20ac._torphE.ON_Ix , and /refactorphoenix will be the default URL

I just updated linkherd.com and urls are now stripped of spaces and underlines. Please let us know if you spot any problems.

Sweet. Thanks!

Looks nice. Dumb feature request: how about custom subdomains? http://subject.linkherd.com/ suggests more of a standalone community than linkherd.com/subject . I've used wildcard DNS for this kind of thing in the past (e.g. simon.idproxy.net )

Yeah, not dumb at all. It's on the to-do list, thanks.

That's not dumb, that's a great request.

can you allow users to create subreddits with their own adsense or other ads shown?

that could be a killer feature over reddit

Yes, the idea to have some kind of revenue-sharing model with networks that want to show ads. Wasn't sure if this plan was worth mentioning at this early stage, but since you asked.

Of course, no one will be forced to show ads -- we can't, since network owners control their own stylesheet.

OpenID support would be nice too ;)

Will look into it -- saw the link you posted on linkherd.com/django

Is this just using a modified version of http://topspot.dk/ ?

Please make the + - buttons larger, I found them hard to click on directly.