[wp-hackers] xmlrpc issue or no?

Jared Bangs jared at pacific22.com
Sun Feb 3 18:46:50 GMT 2008

On Feb 3, 2008 9:15 AM, Lloyd Budd <lloydomattic at gmail.com> wrote:

> Jared, I disagree that there is evidence that anyone "dropped the
> ball", and assuming that was the case, I don't see solutions being
> presented.
> "rawalex" did provide some great clues, and I hope that he sent that
> information and all the details he had to security at wordpress.org.
> <trim>

> You can lead the horses to water, but if they aren't as thirsty as you
> they won't drink. Or, actions inspire more than words, and mostly I
> just got words,

OK, my only point in my comments (that I keep repeating) is that in general
I think that we (including myself) could do better when it comes to
proactively hardening security in WordPress.

I'm not sure what else I can personally do in terms of "presenting
solutions" other than participating in these discussions in hopes of
encouraging people to that end, and contributing patches when I'm able, but
I'm open to suggestions.

If you disagree with my point (that we could do better in this area) that's
fine. You certainly invest a lot more time in it than I do, so perhaps
you're right. Either way, I'd rather not argue about it, since I don't think
that will be productive. I appreciate your responses, and I respect your
point of view.


More information about the wp-hackers mailing list