[wp-hackers] Possible security patch

Matt Mullenweg m at mullenweg.com
Sat Dec 5 19:44:07 UTC 2009


On 2009-12-05 8:28 AM, scribu wrote:
> The correct solution would be to not use an admin user for posting. You can
> use the User Switching plugin for making this easier.
>
> Also, the login name can be harvested by looking at the author archive URLs.

Agreed on this.

-- 
Matt Mullenweg
http://ma.tt | http://wordpress.org | http://automattic.com


More information about the wp-hackers mailing list