Recently I stumbled at my own profile at mybloglog and noticed something weird. The public profile has option for vCard/hCard  which was added recently in mybloglog. Going good so far until I noticed my email id in vCard.

I realized that I hadn’t logged in to Yahoo! account and viewing my own public profile as other user would. I wondered why it is showing my email id to everyone? Normally I never set my email id to be visible by other users apart from my contacts.

I did a quick check ( login to mybloglog -> My Accounts -> Email ) and yeah, it was set to be visible only for my contacts. Still, It was appearing in public profile. Looks like welcoming the spammers

I decided to contact support team ( well, I had no other options! ). Submitted my concern on 6th July at 11.18 EST and waited for the support team to contact back.

Almost 22 hrs gone by and finally tilly replied back saying that’s a new feature and directed me to mybloglog blog entry.

Well, the blog entry indicated about the vCard/hCard feature and also said

“The MyBlogLog team has incorporated member’s privacy settings directly into the hCards/vCards. If a member chooses to share their email address and phone number only with their contacts, the information will only be included on the hCard/vCard when clicked on by their contacts.”

Yeah, looks like they take privacy settings into consideration. Still, for my profile, it’s viewable by others!  Submitted again with the blog snippets and my profile link.

Finally tilly realized the actual problem and acknowledged the problem.  Ian ( mybloglog product guy ) also added that they will add notification which will look for changes in permission on these fields.

My problem solved after Ian’s reply and profile looks as it should be for other users who are not in my contact list!

BTW, If you want to read the whole support conversation, here it is

http://www.mybloglog.com/support/view/A2kPdbYQoNNZFTTUr.QC0G9wK_wEmqcq2fd6Plfe

Tags: mybloglog, security, Technology, Web, yahoo