[wp-hackers] Author URLs expose usernames

Harry Metcalfe harry at dxw.com
Thu Jul 19 14:09:56 UTC 2012


Yes, and would likely cause the browser's request to time out. So the 
user would get an browser error, rather than something telling them to 
try again later.




On 19/07/2012 14:42, Andrew Spratley wrote:
> Thanks Mike,
>
> I need to check it out properly.
>
> Re the point of increasing login times for failed attempts. Am I
> correct in thinking that a php sleep will block that php process until
> the sleep has finished? The result being you can't handle any more
> requests on that process until the sleep has finished?
>
> On Thu, Jul 19, 2012 at 4:33 PM, Mika A Epstein<ipstenu at ipstenu.org>  wrote:
>>> Limiting public login attempts (I'd like to see this in core, does the
>>> aforementioned plugin for on Multisite installs?)
>> Yes :) I use it, works great.
>>
>> Late to the party, but I didn't see anyone loop back n that one.
>>
>> _______________________________________________
>> wp-hackers mailing list
>> wp-hackers at lists.automattic.com
>> http://lists.automattic.com/mailman/listinfo/wp-hackers
> _______________________________________________
> wp-hackers mailing list
> wp-hackers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-hackers


More information about the wp-hackers mailing list