[wp-hackers] Encrypting comment_author_IP, comment_author_email and user_email

Matt Martz matt at sivel.net
Fri Oct 23 17:36:37 UTC 2009


On Fri, Oct 23, 2009 at 01:20:53PM -0400, William Canino wrote:
> Also, if this is something one shouldn't worry about, why not?

One of the first things that comes to mind is issues with getting
avatars from gravatar.  As long as you can hash the email with md5,
don't care about ever seeing the email address again and write a new
get_avatar function (you can do that since get_avatar is in
pluggable.php) to not try and md5 the email address you would be ok.

This may not be the only problem.  Just one of the first that popped
into my head.

-- 
Matt Martz
matt at sivel.net
http://sivel.net/


More information about the wp-hackers mailing list