[wp-hackers] Removing edit theme files features
Chris Williams
chris at clwill.com
Thu Jan 17 19:57:55 UTC 2013
Thank you for the clarification on the options. I have some of each, and
will use them as appropriate from now on.
Perhaps we should try to convince those hosts to enable
DISALLOW_FILE_EDITS by default :)
On 1/17/13 11:53 AM, "Andrew Nacin" <wp at andrewnacin.com> wrote:
>On Jan 17, 2013 2:48 PM, "Chris Williams" <chris at clwill.com> wrote:
>Yes, I am saying that. The vast majority ‹ vast ‹ of sites are now
>installed one-click through hosts. The number of sites that come online
>each day dwarf the clicks of the Download button on wordpress.org.
>
>I would recommend DISALLOW_FILE_EDIT, which blocks only the editors.
>DISALLOW_FILE_MODS also blocks installation and updates of core, plugins,
>and themes, which unless you have a locked down environment handled by
>version control, you likely don't want.
>
>Nacin
>_______________________________________________
>wp-hackers mailing list
>wp-hackers at lists.automattic.com
>http://lists.automattic.com/mailman/listinfo/wp-hackers
More information about the wp-hackers
mailing list