[wp-hackers] Possible security patch

scribu scribu at gmail.com
Mon Dec 7 16:01:47 UTC 2009


On Mon, Dec 7, 2009 at 4:32 PM, Demetris <kikizas at gmail.com> wrote:

> If the problem we discuss here is that exposed/known usernames make it
> possible to guess or bruteforce passwords for those usernames,
> wouldn’t be a solution to simply add to the core something like the
> Limit Login Attempts plugins by Johan Eenfeldt?
>
> <http://wordpress.org/extend/plugins/limit-login-attempts/>
>
> If I understand the issue correctly, I think that a solution like this
> would address it without adding any complexity to the UI (and without
> unloading cognitive burden on the user).
>
> Demetris
> http://op111.net/
>


The best solution I've heard so far. +1


-- 
http://scribu.net


More information about the wp-hackers mailing list