[wp-hackers] Forum Post: Security

Kaf Oseo kaf at szub.net
Sat Jun 25 13:46:59 GMT 2005


Robert Deaton wrote:
> Really, no matter what you do to tableprefix, odds are it won't help.
> All a hacker has to do at sight of an sql injection is create an error
> in the sql, and you see the tableprefix.

I agree. By suggesting sticking to human engineering I was just trying 
to head off some grand scheme for auto-randomization when the security 
benefits are close to nil.

-Kaf


More information about the wp-hackers mailing list