Twitter Bug Lets Users Force Others To Follow Them

Several readers have sent word of a Twitter bug which has been allowing users to make any other user follow them by simply tweeting "accept [username]." People have been abusing it to make the accounts of various celebrities and publications follow them. Twitter acknowledged the bug and disabled the follow/unfollow system until they can get it fixed.

Bug fixed

[PeekabooCaribou]

Twitter says they have resolved this bug. http://status.twitter.com/post/587210796/follow-bug-discovered-remedied

Re:Bug fixed

[Scrameustache]

Twitter says they have resolved this bug.

http://status.twitter.com/post/587210796/follow-bug-discovered-remedied

It's not so much fixed as unreproducible by way of disabling the entire "follow" feature. The twits are in a panic, wondering if they've offended people since their followers have all disappeared.

Re:Bug fixed

[pitchpipe]

Twitter Bug Lets Users Force Others To Follow Them

Who could resist following someone who was doing the "TwitterBug"? It's such an irresistible dance!

Re:Bug fixed

Twitter says they have resolved this bug. http://status.twitter.com/post/587210796/follow-bug-discovered-remedied

I have an easy way to fix it: Cancel your Twitter account.

Re:Bug fixed

[Scrameustache]

It's not so much fixed as unreproducible by way of disabling the entire "follow" feature.

Aaaaaaaaand now it looks fixed.

Re:Bug fixed

[raynet]

Oh I wish that "cancel (username)" would work :)

Re:Bug fixed

[Linker3000]

Good job little Bobby Tables is not using Twitter.

http://xkcd.com/327/

Re:Bug fixed

[MichaelSmith]

Good job little Bobby Tables is not using Twitter.

http://xkcd.com/327/

Or his mum.

Fast

[digitalmonkey2k1]

Looks like it's being fixed...

That might explain Chavez's Top Twitterer Status

[ZuchinniOne]

http://news.bbc.co.uk/2/hi/americas/8671581.stm

Re:Solution...

[PeekabooCaribou]

Slashdot has comments, friend/foe, and journal (blog) space. What's to prevent you from getting fired for using Slashdot?

Probably not a bug

[BadAnalogyGuy]

Consider that selling a list of users and their preferred content information to advertisers could result in a huge profit for Twitter. Then imagine a captive audience forced to receive what is essentially spam tweets.

This is definitely a feature, not a bug. And this disabling of the feature for the time being is a temporary measure to let the furor blow over before reactivating it later.

Twitter isn't a public utility. It's a business just like Google and Microsoft. They will find a way to monetize your behaviors.

So what should you do? Stop using Twitter?

Re:Probably not a bug

[Yvan256]

So what should you do? Stop using Twitter?

Yes.

Re:Probably not a bug

[janeuner]

So what should you do? Stop using Twitter?

Yes.

Re:Probably not a bug

[fotbr]

A strange game. The only winning move is not to play.

Re:Probably not a bug

So what should you do? Stop using Twitter?

Yes.

Re:Probably not a bug

So what should you do? Stop using Twitter?

Yes.

Re:Probably not a bug

[trytoguess]

So what should you do? Stop using Twitter?

Not a bad solution, this link claims locking your twitter account would also work.

Re:Probably not a bug

[517714]

Never start.

Re:Probably not a bug

[fustakrakich]

That might not be allowed. If you don't sign up with these social networks, you will be flagged as a "loner" type , and put on the no fly list. Customs already does this to people who don't have a credit card. I speak from experience. So, what have you got to hide? Sign up already!

Re:Probably not a bug

[Dalambertian]

The suggestion that we should stop using twitter because of spam is quite strange. Has spam stopped you from using email?

Re:Probably not a bug

So what should you do? Stop using Twitter?

Please?

Re:Probably not a bug

That doesn't make any sense. The bug is that you can sign people up to follow your tweets by simply forging the expected "ack" for what would normally be the "syn" on a protected account. This would allow the user to do things like unfollow or block unwanted twitter accounts that are used for advertisers.

Twitter has already said that they are creating an advertising system that will insert ads into your twitter stream. These supposedly will be single ads, inserted at the top, similar to google's searches. These will not be advertiser streams that you will be signed up to receive: they will simply appear in your stream. You will have no recourse to stop following or ban the ads, as they are phantoms in the system. They behave nothing like the bug listed here.

Making it a public call would be even more foolish, as advertisers would be able to use it without actually paying Twitter. They could just sign people up on their own. What would be the profit in that? Twitter needs to control access as the gatekeeper in order to make advertisers pay.

And do you really think Twitter the company doesn't have in-house tools to add anyone to anything they want to? What would they need this hacky external method for?

Think it through. This is a bug, pure and simple. Someone wrote the authentication for protected accounts a long time ago, and didn't put a lot of thought into it being a worldwide phenomenon. Yes, Twitter is going ad-supported. But this bug has nothing to do with that.

Re:Probably not a bug

[cgenman]

Whoops. Meant to post under this account name.

Re:Probably not a bug

Or it could just be a bug.

Re:Probably not a bug

[Jer]

Whether or not this would be useful for spam, it would be more profitable for Twitter to be able to control it, rather than letting individuals force other people to follow them. This is clearly a bug - there's no financial benefit to Twitter with this and if it went on for too long they'd lose users (which is probably why they shut off the follower mechanism as soon as the bug was publicized).

Not to say Twitter couldn't introduce their own advertising scheme. Just that if they did they'd want it to be one they controlled - and took payments for - not one that random spammers could exploit for free.

Re:Probably not a bug

That would imply starting to use Twitter.

Re:Probably not a bug

[owlnation]

"The suggestion that we should stop using twitter because of spam is quite strange. Has spam stopped you from using email?"

Yes. Well, specifically, it has stopped me using Yahoo or Hotmail as an email provider.

Twitter is perhaps a useful tool for a few people, but it's far from essential. There's plenty of alternative means of communication. There's no reason anyone "needs" twitter. I've never used it, and I can't imagine any situation where I would ever do so. It's simply a fad, nothing of value will be lost by anyone stopping using it.

Re:Probably not a bug

What's twitter?

Re:Probably not a bug

yes

Re:Probably not a bug

A strange game. The only winning move is not to play.

Dangit. I just lost The Game. Problem is, as per Rule 1, you can't not play.

Re:Probably not a bug

[Dalambertian]

Like many others here I use gmail to make spam negligible, and I'm sure enterprising people will do the same for twitter should spam become a real problem. Twitter's value comes in what you stand to gain by using it, not by what you think is currently necessary. Think about the effects of #cnnfail or Kevin Smith's Southwest Airlines incident. Compare the effects of a single subversive tweet to all the hundreds of letters you might write your congressman. But aside from its role in society, its personal value is in who you choose to communicate with, just as with email.

Re:Probably not a bug

It's like trying to read slashdot by only reading slashdot.org/~[username]/comments

You only get to see the comments of people whose usernames you know, you only get to see one person's comments at a time, and if you spend half a day you can almost put together most of a thread.

Re:Probably not a bug

[binarybum]

that sounds awesome - sign me up!

  btw. this twitter thing is not on at the same time as reality tv is it? because i'd hate to miss that.

Re:Probably not a bug

[MichaelSmith]

that sounds awesome - sign me up!

I'll do that for you right now...

Re:Probably not a bug

You are doing it wrong.

Re:Probably not a bug

[jonadab]

> If you don't sign up with these social networks, you will be flagged
> as a "loner" type , and put on the no fly list. Customs already does
> this to people who don't have a credit card. I speak from experience.

Huh. I've never had a credit card, and last I checked I didn't have any trouble at the airport. Granted, it's been five years since the last time I flew. But I didn't have any problem at that time.

If I were paranoid, I'd probably think you were a credit-card industry shill spreading FUD to scare people into getting credit cards. But in reality I don't think they're bothering much about it at this point. They have pretty much the entire adult population in their crushing grip already and have, I think, become complacent about the rest of us. There must be at least a few hundred of us left in this country who have never given in and got a card, but at this point I think they're just ignoring us. Heck, they don't even bother to harass me with endless credit card offers in the mail any more. I used to get that junk every day, but at this point several *months* can pass between their "offers".

First they wheedle and cajole, then they laugh at you, then they ignore you, then you win?

Re:Probably not a bug

[that+IT+girl]

As soon as Twitter is useful for sharing confidential business information, receiving bills and shipping information, having personal conversations with one other person or just a select group of people, and transferring attachments... then and only then can it be compared in any way to email.

Re:Probably not a bug

[fotbr]

Think about the effects of #cnnfail or Kevin Smith's Southwest Airlines incident.

The what? Who's Kevin Smith, and why do I care what happened between him and an airline I avoid like the plague?

Twitter still isn't important.

Re:Probably not a bug

[geekboy642]

If you share confidential business information over unencrypted email, you might as well just be posting it on twitter.

Re:Probably not a bug

[that+IT+girl]

Absolutely right. Which is just another feature of email--the fact you have the option of encryption--that sets it so far apart from Twitter, you can't possibly start comparing the two as the parent poster did.

Re:Probably not a bug

[Dalambertian]

My point in the comparison is simply to illustrate that the benefits of twitter as a utility outweigh the costs of whatever spam that might get through, just as with email. Twitter does not need to duplicate the functionality of email for it to be genuinely useful to society.

Re:Probably not a bug

[Dalambertian]

#cnnfail was the twitter hash tag used when CNN neglected to cover the Iranian protests last summer. It's what prompted CNN to include a twitter feed in their broadcasts. Kevin Smith is the writer/director of Dogma, Clerks, Chasing Amy and other counter-culture cult classics. He complained over twitter about getting kicked off a plane for being too fat. Southwest Airlines was forced to make a few public statements defending their policy. I mention these stories as examples of how twitter is helping shift the balance of power away from mainstream media and corporations and toward the public.

Re:Probably not a bug

[that+IT+girl]

Fair enough, point taken. I find it an odd comparison, but I can see what you're getting at.

Re:Probably not a bug

[QuietObserver]

More to the point, aren't most of us "loners" already? Besides, what's wrong with being a "loner" in the first place? And I agree with you about credit cards. I can't recall the last time I received a "you're preapproved" item either, though I have destroyed enough in my time. I believe we can say we have won.

Re:Probably not a bug

[QuietObserver]

No, but it moved me to GMail, where I have far better control over spam. And I never used twitter in the first place, and only looked into this because the article name made me laugh.

That sounds more like a

[abbynormal+brain]

test command embedded into the code that allows "dummy" testing within the development environment. Either way - oops.

Re:That sounds more like a

[squiggleslash]

I'm going to stick my neck out and suggest it's more a case of someone deciding not to check for errors in a bit of code.

In Twitter, you can have either protected tweets or unprotected tweets. If the former, then if someone wants to follow you, they have to request it, and you can either "accept" them following or deny it.

It looks to me that the commands are sent in-band, and that the command "accept " is related to the above code. What isn't happening is any check that the person identified ever actually sent a request in the first place.

So, this isn't an evil conspiracy to send people advertising (was BAG being serious?), and I doubt it's test code either. The above just "fits" with everything we know about twitter.

Re:That sounds more like a

[AndrewNeo]

They're likely sent in-band because most SMS commands are the same as the web interface. You can follow, direct message, etc. through both SMS or the update interface.

Re:That sounds more like a

I agree. It's likley just another security flaw that allows command injection into the twitter application. Along the lines of SQL injection, or interpeter code injection used when web programming was done using CGI

Of course

[Monkeedude1212]

Justin Bieber is actually a secret computer hacker, breaking simple algorithms like this is cake for him.

In fact, all of his music is about IRC.

Re:Of course

[Thelasko]

From what I understand, this bug was discovered by someone who calls himself "Bobby Tables." However, there appears to be no records of such person in any school system computers.

Re:Of course

[i+ate+my+neighbour]

Actually it is discovered by some anonymous guy in "inci sozluk" kind of Turkish equivalent of /b/

So...?

[fahrbot-bot]

All your tweets are belong to us?

Re:So...?

[Abstrackt]

"In Soviet Russia, celebrities follow YOU!"?

Re:So...?

[K.+S.+Kyosuke]

Actually, it's more like "All our tweets are belong to all of you".

Re:So...?

[BSAtHome]

All your tweets are belong to us?

No, they belong to Bobby Tables.

Re:So...?

[ciaohound]

...
5) Profit!?

Re:So...?

Only in Soviet Russia...

Cool!

What if I try to tweet system("rm -rf /") ?

Re:Cool!

[sohp]

Or better yet: ;DROP table users; --

Does this work on Slashdot?

[InvisibleSoul]

accept +1 Funny

Re:Does this work on Slashdot?

[Yvan256]

Looks like it works, but let's try it with something else just to be sure.

accept +5 MooCow

Re:Does this work on Slashdot?

[capo_dei_capi]

This board does not have Super Cow Powers.

Re:Does this work on Slashdot?

[Yvan256]

Damn, I went back to Tristram for nothing.

Re:Does this work on Slashdot?

[Idiomatick]

I like that this was marked troll as if the mods were personally offended that someone dare suggest that /. doesn't have 'Super Cow Powers'.

Re:Does this work on Slashdot?

[capo_dei_capi]

Yup, this is definitely the last time I doubt the omnipotence of /.
Gonna get banned if I do it again, anyway.

Re:Does this work on Slashdot?

[natehoy]

Yup, works fine.

Re:Does this work on Slashdot?

replying AC to undo accidental overrated mod. Meant funny.

Fucking stupid metamod system that doesn't let you confirm...

and i thought people just hated me

[alen]

looked up my twitter and i have 0 followers now

Re:and i thought people just hated me

I still have the same number of followers.

Re:and i thought people just hated me

[Ackmo]

0?

Re:and i thought people just hated me

[TheLink]

Looks like the mods here hate you too since you're modded off-topic (even though your post is more on-topic than most posts :) ).

Maybe you could try posting "accept +1 Insightful". It worked for some slashdotter earlier (who went for +1 Funny).

In-Band Signalling

[captaindomon]

This is one of the difficulties of In-Band Signaling. Their communication channel is so limited that handling secure signaling is difficult.

Re:In-Band Signalling

[Amouth]

not exactly.. their failure was not implementing some type of request/accept queue system.. and if they did they bypassed it and gave the accept message the ability to add people even if they where not in the queue, which is just stupid.

while i agree that In-Band Signaling is not easy to do right, and that they do have a limited communication channel.. they do not have a limited processing or back-end infrastructure..

there is no excuse for this type of screwup..

Re:In-Band Signalling

[MarcoAtWork]

it's not *that* difficult: you could have a simple UUID sent on follow requests that has to be returned in the accept/not accept response for example; the fact that twitter fixed this issue very quickly could mean that that this was indeed a testing command that was left in and that the user-initiated follow/unfollow works a bit more securely...

Re:In-Band Signalling

[drachenstern]

well, go ahead and accept me at my /. twittername and see if it works. I think they've disabled follow/unfollow requests for now

Plus, I really wanna see if it shows up on both ends of the queue, or just the one end.

Obligatory

[Godai]

TWITTER BEFORE ZOD!

Re:Obligatory

Trust me, this wasn't obligatory at all. Epic fail.

Blue Box

[John+Whitley]

Heh, it's tempting to view this as an accidental homage to the blue box.:

An early phreaking tool, the blue box is an electronic device that simulates a telephone operator's dialing console. It functions by replicating the tones used to switch long-distance calls and using them to route the user's own call, bypassing the normal switching mechanism. The most typical use of a blue box was to place free telephone calls - inversely, the Black Box enabled one to receive calls which were free to the caller.

For those new to the party, on early telephony networks the telco's control signals were sent on the same channel as the content (voice) signals. Some bright folks figured out how to exploit this weakness. Oops. ;-)

Re:Blue Box

[BlueBoxSW.com]

Interesting...

Re:Blue Box

[TubeSteak]

For those new to the party, on early telephony networks the telco's control signals were sent on the same channel as the content (voice) signals. Some bright folks figured out how to exploit this weakness. Oops. ;-)

The main difference being that back in the blue boxing days, security was an afterthought and now it's a multi-billion dollar industry.

Which only makes Twitter's glaring mistake all the more embarrassing.
It's up there with Norton's "stopkeylogger" fiasco.

Re:Blue Box

[hitmark]

yep, telcos operated on the "security by obscurity" system. Only their own personnel should in theory know the unlisted numbers to the switches and so on. But thanks to anything from grabbing manuals from the back of repair trucks, to wardailing whole area codes, this didnt work in the long run.

Re:Blue Box

[morgan_greywolf]

Which only makes Twitter's glaring mistake all the more embarrassing.
It's up there with Norton's

Damn it! Why does your post keep crashing my browser? There's nothing after this...

Re:Blue Box

[cgenman]

The main difference being that back in the blue boxing days, security was an afterthought and now it's a multi-billion dollar industry.

It's a multi-billion dollar industry... that gets called in after-the-fact once a tool gets really popular.

Woot this, Twitter!

[macraig]

I thought the Woot blog response to the matter was more interesting. I haven't been corrupted by Twitter yet, so it's all just amusing to me anyway.

fix

[karlzt]

fixed!

Re:That might explain Chavez's Top Twitterer Statu

[nbates]

You are kidding, right?

fixed!

[karlzt]

http://status.twitter.com/post/587210796/follow-bug-discovered-remedied

Re:fixed!

Nope! Just disabled. A little like you.

Re:Solution...

[WrongSizeGlass]

1) Do not hire anybody using social networking sites.

2) Make joining social networking sites a cause of immediate termination of employment.

Are you kidding me? How on earth do you expect employers to spy on their employees without the employees handing out their personal lives on a sliver platter? Sure, everyone wants the "best and the brightest" employees ... but do you really need a Rhodes scholar to do your accounts payable paperwork? Or handle your returns department? Of course not. Employers use these sites to "safely" monitor their herd of employees without "going to far".

Re:Solution...

[ls671]

> Slashdot has comments, friend/foe, and journal (blog) space.
> What's to prevent you from getting fired for using Slashdot?

much less obvious when comes the time to link it to my identity. Not that it is impossible although ;-)

I never told my Slashdot ID to anybody I know, I don't friend/foe anybody and I have no journal. Additionally, I try to be careful about what I post.

When can I pass the interview ? ;-)

this only worked in Twitter's Web interface..

[tirnacopu]

..not on third-party apps?
Twitter, meet WWW::Mechanize.
WWW::Mechanize, meet a twat.

Re:this only worked in Twitter's Web interface..

[AndrewNeo]

It probably worked over SMS, too.

Re:Solution...

[Abstrackt]

> Slashdot has comments, friend/foe, and journal (blog) space. > What's to prevent you from getting fired for using Slashdot?

much less obvious when comes the time to link it to my identity. Not that it is impossible although ;-)

I never told my Slashdot ID to anybody I know, I don't friend/foe anybody and I have no journal. Additionally, I try to be careful about what I post.

When can I pass the interview ? ;-)

When you work for a company I'm pretty sure they know your identity. I think it's also safe to assume they don't care what your /. ID is, just that you're wasting company time.

it's all fun and games

[circletimessquare]

until you realize that as twitter creeps further into english language use, the following conversation following english language convention is only a few months away:

"i was going to twitter that until i got the tweet you twatted yesterday and i realized its no fun twuttering anymore, you twat"

"don't call me a twat you twit"

(shudder)

Re:it's all fun and games

saying twat in the context of twitter was funny for like the first 5 minutes of twitter existing

Re:it's all fun and games

[adamofgreyskull]

Acting grown up is easier when you like, use correct capitalisation, punctuation and like, don't use the word "like" like that.

Re:it's all fun and games

not a criticism of perceived maturity, just saying stale joke is stale

Testing

[Dan+East]

modfunny 318230

Re:Testing

[ahow628]

I could definitely see "unaccept (username)" coming in really handy over here at /.

Re:Testing

You're doing it wrong ... it would be modfunny 32159358

(But then you didn't know your mid when you posted, did you?

Re:Testing

it works! quick freeze the mod system, it's got the same bug as Twitter!

Re:Testing

accept cowboyneal ... feels more like a religious statement...

Re:Solution...

[ls671]

Sorry I posted on the wrong topic, I had a FA linking to a topic about social networking sites and jobs in "sensible activity fields" on my /. front page and it doesn't seem to be there anymore ;-))

It might be a /. bug, I can`t explain it ;-(

Conan saw it coming

http://twitter.com/ConanOBrien/status/13631062967

Re:Solution...

[ls671]

Sorry I posted on the wrong topic, I had a FA linking to a topic about social networking sites and jobs in "sensible activity fields" on my /. front page and it doesn't seem to be there anymore ;-))

Here is the link I posted to, it apparently has been rescheduled from 1:27 PM to 3:09 PM eastern time. So it seems like a /. problem.

http://tech.slashdot.org/story/10/05/10/1652245/Businesses-Struggle-To-Control-Social-Networking?art_pos=1

Re:Solution...

[ls671]

> just that you're wasting company time.

Some people are paid by their company to read /.

Why do Web 2.0 sites have so much trouble?

What is it with the so-called Web 2.0 sites that makes them so much more prone to cock-ups like this?

If they aren't suffering from a security flaw like this one, they're suffering from horrible performance problems.

Take Reddit, for instance. They put it in read-only mode for many hours last week after users had their posting histories go missing and other problems arose.

It's not like these sites are getting that much traffic. Digg and Reddit aren't even in Alexa's Top 100 sites. There are many other sites out there that get just as much, if not more, traffic, yet their performance is just fine.

Maybe it has something to do with these sites using NoSQL? They've flat out rejected 40 years of accumulated database knowledge and experience in favor of messing around with network-aware hash tables. Maybe it's no surprise that they have so many problems, when they intentionally avoid best practices.

Re:Why do Web 2.0 sites have so much trouble?

[dskzero]

I'd guess it's because there are more users more likely to stick their mouse pointers where they are not supposed to.

myspace?

[WndrBr3d]

... but most of all, samy is my hero.

It's twitter

It's twitter. Did you really think it takes that great of an actual programmer to write that site? I mean they did decide to make a massive site using Ruby on Rails and then write their own message queue in Ruby, ignoring the 100000 existing queues that were better in Ruby and other languages. Is anyone shocked that they can't implement basic logic and security properly?

Re:Solution...

[drachenstern]

And yet some of us have been using slashdot for as long as we've been on the web (roughly so ~ more or less) as younger folks know it today.

I've been using this nick since 95 ish and haven't hidden that fact as far as I can remember. It was only lately that I even got an email addy that matched my real name (and that only for job hunt purposes). So I guess the fact that you don't share your username outside /. is related to the fact that you only got on the internets a couple years ago?

Also, who the f*ck cares? It's /.. We're supposed to be crackpots. Why be careful about what you post?

Recursive twittering

[Jesus_666]

Has anyone abused this to follow themselves? That has much more fun potential than pretending random strangers care about your tweets.

Re:Recursive twittering

[Phrogman]

I would agree, but the only people following me are random strangers - possibly because I signed up for Twitter, sent one tweet as a test, and haven't been back again. I just don't see the point if you aren't a celebrity who wants to get more publicity.

Re:Recursive twittering

[pinkushun]

Infinite loop! Let's try that out... out... out... out... out... ....

Re:Recursive twittering

[cgenman]

If you have a large group of friends and associates, it's a nice way to let each other know of goings-on. Things like BBQ's, beach outings, cocktail nights, etc.

If people you know aren't using it, then it is exceedingly useless.

Re:Recursive twittering

You're a real cocktail, fruit!

Re:Recursive twittering

[SlowMovingTarget]

And so dawns the age of the auto-lobotic circle-tweet.

I know someone tried this already, but,,,

[VGPowerlord]

friend VGPowerlord

Re:Solution...

[silanea]

Too bad there is no -1 Making me envious moderation.

Holy crap!

I never thought I would see one of these soviet russia things where it was actually accurate and relevant.

Re:Holy crap!

[Abstrackt]

I never thought I would see one of these soviet russia things where it was actually accurate and relevant.

Why, thank you. Let me add you as a follower on twitter. ;)

Don't be silly

[Snaller]

"So what should you do? Stop using Twitter?"

Exactly. They'd loose 90% of their users like that if it they started doing that.

Re:Don't be silly

Exactly. They'd loose 90% of their users like that if it they started doing that.

They'd turn 90% of their users loose? Good heavens! Can you imagine 90% of Twitter's users, loose in the wild, making hideously abbreviated statements and acting like they're important because a bunch of other abbreviated-minded people follow them? It'd be an unprecedented disaster! It'd be as if all the braindead SMS texters suddenly started talking exactly like they text, in the real world!

We have to stop it from happening! Twitter can't LOSE * a single user over this!

*: You illiterate moron.

Re:Don't be silly

Y r teh grammer natzees allways so angrey?

Re:Don't be silly

Because the grammar Nazis are always confused with the spelling Nazis.

Re:Solution...

That reminds me of a Breakfast Club quote: "Demented and sad... but social."

One tweet...

[Stick32]

One tweet to rule them all... One tweet to find them... One tweet follow them all... and in the darkness... pitch them your script for your Lord of the rings spin-offs.

Reminded of 'The Wizard of Oz'

Better watch out for the Twitterbug... ;)

Haha Turkish Metal Killed Twitter.....

[Shadow_139]

"Twitter bug and ensuing 0 followers/0 following fiasco was inadvertently started by a Turkish fan of heavy metal band Accept. When this young man tweeted "Accept pwnz," he found that the user @pwnz was suddenly following him."

Accept "@"

Follow Me Bitch!

Sorry to go so far off topic--

[way2trivial]

but how did you acquire your ticket? cash?

Re:Sorry to go so far off topic--

[fustakrakich]

Yeah, of course.. That's one of the things that flag you. And I bought it through an ad in the Sunday paper at the last minute because the price was so cheap. They gave me all sorts of shit. I know I "fit a description". Fuck them.. Bitch was completely convinced I was carrying.. Even said so as I was leaving.. "You just don't have it on you." Fuck them twice.. Five days later four airliners crashed almost simultaneously.. by people who had credit cards.. All their papers were in order

But now, in these days of hysteria of our post 9/11 world, they can hold you for a lot longer for no reason at all.

Re:Sorry to go so far off topic--

[stoborrobots]

but how did you acquire your ticket? cash?

Yes, actually.

PROTIP: Buying a ticket for "next flight to <X>" at the airport using cash gets you instantly flagged for Special Treatment... Handy if you're at a busy airport. :-)

Re:Solution...

[MichaelSmith]

Too bad there is no -1 Making me envious moderation.

Its not a good thing.

nonono::

chmod +5 ---funny 'Dan East':318230

Security through Obscurity? HA HA HA

[SoTerrified]

As a programmer, I found the story of how the 'bug' was discovered quite amusing.

"The bug was inadvertently exposed by a Turkish fan of the German heavy metal band ACCEPT. When this young man tweeted "Accept pwnz," he found that the user @pwnz was suddenly following him." (Details (in Turkish) at http://inci.sozlukspot.com/e/4266098/)

This should forever be used as an example of why security through obscurity is no security at all.