[wp-hackers] wordpress security

scribu scribu at gmail.com
Mon Oct 19 20:33:50 UTC 2009

On Mon, Oct 19, 2009 at 11:24 PM, Jeremy Clarke <jer at simianuprising.com>wrote:

> On Mon, Oct 19, 2009 at 4:05 PM, Otto <otto at ottodestruct.com> wrote:
> > 2. You're assuming that there exists some subset of people whom a) do
> > not do upgrades regularly now and b) would be motivated to do so by
> > receiving an email to that effect. I submit that this assumption is
> > seemingly based on nothing whatsoever, as I am unable to find any
> > support for this notion in any support forums, blog posting, comments
> > on blog postings, or indeed in any other part of reality as I can
> > currently perceive it. This subset of people appears, to me, to be
> > some idealized notion, a blog owner who is truly helpless and unable
> > to do something as simple as actually look at his own website from
> > time to time, despite somehow continuing to write posts on it and
> > possibly even interact with people through it. Not only that, but if
> > this mythical blogger was, say, hacked, then he'd be upset for being
> > so, despite having not looked at the back end of the site in the last
> > couple of months...
> I'll point out that I, as well as a number of other people in this
> thread, have specifically stated that we ourselves would profit from
> this, so it's not an idealized notion, its a group of people who you
> just claimed don't exist while in conversation with them.
> It's also pretty unrealistic to expect all blog admins to visit the
> sites they manage on a regular basis. Not only are they likely to set
> up sites for friends (who may or may not use them regularly) but in my
> experience there are a lot of times when you're managing sites that
> are basically retired, but that you don't want to take down because
> you don't like dead links on the internet. In both of these cases
> (which I think account for a lot of the people on this list who said
> it would be useful to them) the email feature would be both a handy
> reminder on top of your other organizational tactics and potentially
> the only thing that would ever remind you that the site exists and
> needs attention (whether it turns out that attention is to be upgraded
> or deleted due to being dead/never-used).

I thought we had established that blog admins are savvy enough to install
the mail notification plugin.


More information about the wp-hackers mailing list