As I’m required to write this post to verify my blog using the traditional “Post Claim”, thought I might as well talk a little about it.

In setting up my blog in technorati, they have a new option to do a “Quick Claim” to prove that you own this blog. This entails to give them your username and password to wordpress to log in and verify the blog. But don’t worry..

Note: Remember to use the username and password for your WordPress account, not your Technorati account. This will only be used once to verify that you own the blog. It will not be stored in our system.

Does anyone else see the problem with this? Here you go, here’s my wordpress login and password. Although it’s not “stored” in their system according to technorati, the details you input would have to be placed somewhere on disk (in a db?) or at least memory for the bots to read it and try to login to verify things. So what happens after it is read?

I know other online services such as google analytics, require you to upload a specific text file to the root of your site with only a key in the contents, which they then do a GET /file1234.html to verify that you own the site. Surely this is a better way, although a little more technical work is needed.