[wp-hackers] Security: username as class in commenst
John Blackbourn
johnbillion+wp at gmail.com
Tue Mar 10 22:40:36 GMT 2009
Frank,
The general concensus is that this form of "security" is security by
obscurity and has been discussed many times. This was also noted in a
previous thread of yours a while ago.
http://comox.textdrive.com/pipermail/wp-hackers/2008-October/022036.html
Regards,
John.
2009/3/10 Matt Martz <matt at sivel.net>:
> -1
>
> There was a similar discussion some time ago relating to author pages. One problem with using the nick name is that it doesn't have to be unique whereas the username does.
>
> Frank Bueltge <frank at bueltge.de> wrote:
>
>>Hello,
>>the new comment-functions has the username of the author as class.
>>please can you change this in the newxt release to the nickname.
>>
>>i think this is a problem for security.
>>
>>I hope you enjoy this.
>>Frank
>>
>>http://bueltge.de/
>>http://wpengineer.com/
>>_______________________________________________
>>wp-hackers mailing list
>>wp-hackers at lists.automattic.com
>>http://lists.automattic.com/mailman/listinfo/wp-hackers
>
> --
> --
> Matt Martz
> matt at sivel.net
> --
> --
> Matt Martz
> matt at sivel.net
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers
>
>
More information about the wp-hackers
mailing list