[wp-hackers] Securing Wordpress Login

Doug Stewart dstewart at atl.lmco.com
Tue Aug 22 13:45:48 GMT 2006


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Brian Layman wrote:
>> Why not add a concept of "safe IPs" or somesuch?  
> 
> To the core?  It wouldn't be practical for most people. Besides, the forum
> still gets questions about why their posts don't show up when hitting save
> instead of publish.  Safe IPs is a little to advanced for the masses.
> 

To the core, to a plugin that accomplishes the same effect, whatever.
It doesn't really matter to me either way - I was simply making a
suggestion as to how to avoid a particularly narsty side effect of going
the account suspension route.

I think perhaps a better route might be an informational one: generate
"excessive login attempts" emails and fire 'em off to the blog admin so
that they can at least be aware of some jerk trying to hax0r their site.
- --
- ----------
Doug Stewart
Senior Systems Administrator/Web Applications Developer
Lockheed Martin Advanced Technology Labs
dstewart at atl.lmco.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFE6wqLN50Q8DVvcvkRAnmHAJ4/MpqcCzKHiAz2KhCsKssNO/A+SgCfWUfE
KDT3UTL8RZHOVHhwtKttX+0=
=J1un
-----END PGP SIGNATURE-----


More information about the wp-hackers mailing list