Chris Shiflett’s profile

Founder of @helloroost. Partner at @fictivekin. Husband to @christinabklyn. Father to @teganshiflett, @killianshiflett, & @rileyshiflett. Avatar by @johnmaeda.

Latest Comments


Just noticed another one:

Posted in URL Sentences.

Tue, 20 Sep 2016 at 03:19:42 GMT


Julio, can you share a screen shot or a paste or something that shows what's happening?

Also, this post might be helpful:


Fri, 15 May 2015 at 21:44:26 GMT


Thanks for the comments.

A few quick notes:

1. Yes, it is wrong to provide your password for one site to a completely different site. We're no different, and this almost prevented us from making this tool.

2. The password dump we have is not guaranteed to be complete. In fact, I wouldn't be surprised if someone has a dump of the entire database that also includes email addresses. The scary truth is that we simply don't know.

3. You should assume your LinkedIn password, and especially the hash of your LinkedIn password, is already in the open. Providing it to LeakedIn enforces a bad habit, but it's not exactly the same as the password anti-pattern. I do not think direct comparisons are accurate or fair. I may explain why in more detail later.

4. Like many of you, I also changed my LinkedIn password, but since they don't know how this happened yet, they haven't fixed anything. Therefore, we should assume that our new LinkedIn passwords are also compromised.

Hopefully this answers a few of the most common questions.

Posted in LeakedIn.

Thu, 07 Jun 2012 at 00:19:26 GMT


That looks fantastic. Thanks, Robert.

Adding it to the post. :-)

Posted in JavaScript Study Guide.

Thu, 10 May 2012 at 16:07:39 GMT


Mohamed, I find that announcing my goals has the opposite effect. It helps me stay motivated.

I first learned about this approach to motivation from a book I used to train for my first marathon. The authors recommend picking a marathon and telling everyone you know that you're running it. This presents an obstacle to backing out, because you've put yourself on the hook.

Time will tell if it works for learning JavaScript. So far, so good. :-)

Posted in Learning JavaScript.

Mon, 02 Apr 2012 at 20:24:16 GMT


I don't think intentional trolling will ever go away, but I think it would help if sites like Hacker News would remind users not to assume the author of whatever they read is making a big deal about something.

Unless, of course, the author is the one who submitted it. :-)

Posted in Svbtle Versus Obtvse.

Mon, 26 Mar 2012 at 14:48:22 GMT


Thanks for the excellent suggestions.

Joël, I'll pick up Stoyan's book. I didn't realize he had written one. Thanks.

Nick, when I was first learning PHP, I answered lots of questions (in great detail) on PHP General as a way to deepen my expertise. It really helped, so I like your suggestion.

Jason, I really like your lab. I think you've convinced me to put some more love into mine.

Nicolas, thanks for the link to Nathan's JS Lessons. I'm going to add this to the mix.

Posted in Learning JavaScript.

Tue, 07 Feb 2012 at 18:24:51 GMT


This is a comment via email from Arpad Ray, who doesn't use Twitter. Yet. :-)

Sadly it doesn't seem possible to adapt session_encode / session_decode to operate on arbitrary input because of the way the session serialization API was first written. (Serializers work on $_SESSION directly.) It may be feasible for PHP 6 but it would be a big internal BC break. It may be unwise to call session_write_close() from a session handler's destructor because other objects it uses might be destructed earlier. Shutdown functions are run before any destructors are called so they're always a safe option. Finally I'm hopeful that my patch to introduce object oriented session handlers will be adopted for PHP 5.4 - that would make debugging a lot easier since you could transparently extend whatever handler is currently in use, and still call the parent implementation.

Posted in PHP Session Debugging.

Wed, 25 Jan 2012 at 14:49:13 GMT


For anyone considering 1&1, I'd recommend you be wary of them. When things go wrong, the quality of your registrar matters.

Read about David Walsh's woes with them:

Posted in Domain Registrars.

Fri, 02 Dec 2011 at 15:04:07 GMT


Here's a good article on A List Apart that covers this issue:

Posted in Stop SOPA and Save the Internet.

Tue, 29 Nov 2011 at 14:19:00 GMT


  • Twitter: @shiflett
  • Location: Boulder, CO
  • Joined: September 2004
  • Comments: 745