Discussing Disqus

Many of us have been very frustrated with the Disqus commenting system affiliated with pebblewriter.com.  It’s difficult to attach charts to comments, and it’s impossible to edit comments once they’re made.

I’ve been going back and forth with the folks from Disqus for months, and finally got a clear answer.  It’s not the answer I was hoping for, but at least it’s an answer.

Hi Michael,

Rest assured your follow-up emails did not get lost; we actually have received a much higher-than-normal number of inquiries recently and are working to respond to everyone as quickly as possible.

These issues are system-wide in Disqus right now. Similar to uninstalling and reinstalling, upgrading would not yield any benefits. To clarify on what’s happening here, there are two issues:
– editing comments via SSL does not work;
– posting image attachments via SSL does not work.

As you can see, both issues are related to the fact that the actions are being performed over an SSL connection (i.e., HTTPS) rather than a standard HTTP connection. Other sites on which you are able to edit comments and attach images are using HTTP connections. Adding additional SSL support is something on our radar.

Let us know if you have questions on any other Disqus-related issues.

I originally made the decision to run pebblewriter.com as an SSL site due to the enhanced security it provides.  As Wikipedia explains:

HTTPS provides authentication of the web site and associated web server that one is communicating with, which protects against Man-in-the-middle attacks. Additionally, it provides bidirectional encryption of communications between a client and server, which protects against eavesdropping and tampering with and/or forging the contents of the communication.  In practice, this provides a reasonable guarantee that one is communicating with precisely the web site that one intended to communicate with (as opposed to an impostor), as well as ensuring that the contents of communications between the user and site cannot be read or forged by any third party.

It seemed important to me to provide a secure connection, especially since members pay for their memberships through PayPal by entering their information on the site.  I didn’t want folks to have to worry about their credit card numbers being intercepted by anyone.

It seems there are two possible solutions here.  One is to wait for Disqus to get their act together and leave the site more secure (although “on our radar” is way too nebulous for my taste.)

The other solution is to switch to a system where payment is made on the PayPal website and convert pebblewriter.com to a standard http site.  Members would click on a PayPal button on this site, then be referred to PayPal’s website for actual payment.  Either way, PayPal processes the payments in a secure manner.

There are some other comment management systems out there, but I’ve no experience with any of them.  So, I’m leery to adopt one without a very strong endorsement.  Please chime in if you have experience with LiveFyre, Echo, etc.

It doesn’t make a whole lot of difference to me — although, it would be really nice to be able to include charts in comments.  I don’t have the developer chops to suggest one solution over the other.  Some of you do, though.  So, please weigh in.  It affects everyone, so let’s get some dialogue going.  I look forward to your comments.



p.s.  for those of you willing to jump through a few hoops, I’ve found that posting a chart to a comment won’t seem to work at first; but, if you refresh the page after attempting the attachment, the chart will appear more often than not.


Discussing Disqus — 4 Comments

  1. Another way to do it would be to add a forum to the site, and then link the blog post to a dedicated discussion thread.  The other huge benefit of doing it this way would be the much improved ability to really interact and discuss ideas with other members.  Obviously it would be for paying members only, but I’m sure there are a lot of smart people here and it could only be positive having a better way to interact with everyone.  Plus, posting charts and images is really easy in most forum software.  vBulletin is the standard, and even though its a little tedious to set up, its really solid and very customizable once its up and running.

  2. Pay through Paypal site… security is their core area. Tone the site down to http. 

  3. PW, if it were based off our login handle (like Disqus) I’d be up for any secure connection. Tough situation. Good luck.

    (keep pedalling, by the way. :-). )