[wp-hackers] Securing Wordpress Login

Viper007Bond lists at viper007bond.com
Tue Aug 22 03:11:15 GMT 2006


Can't we just leave it to the user? I'm all for blocking people from the 
login from after X fails, but changing passwords and forcing secure 
passwords is retarded IMO.

I prefer to not treat the user as if they are stupid, even if they are 
(and then it's their fault). Sure, a strength _indicator_ would be cool, 
but forcing? I mean, what if I wanna do test/test on my local install?

-Viper


More information about the wp-hackers mailing list