[wp-hackers] Securing Wordpress Login

Doug Stewart dstewart at atl.lmco.com
Tue Aug 22 13:45:48 GMT 2006

Hash: SHA1

Brian Layman wrote:
>> Why not add a concept of "safe IPs" or somesuch?  
> To the core?  It wouldn't be practical for most people. Besides, the forum
> still gets questions about why their posts don't show up when hitting save
> instead of publish.  Safe IPs is a little to advanced for the masses.

To the core, to a plugin that accomplishes the same effect, whatever.
It doesn't really matter to me either way - I was simply making a
suggestion as to how to avoid a particularly narsty side effect of going
the account suspension route.

I think perhaps a better route might be an informational one: generate
"excessive login attempts" emails and fire 'em off to the blog admin so
that they can at least be aware of some jerk trying to hax0r their site.
- --
- ----------
Doug Stewart
Senior Systems Administrator/Web Applications Developer
Lockheed Martin Advanced Technology Labs
dstewart at atl.lmco.com
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


More information about the wp-hackers mailing list