[wp-hackers] Securing Wordpress Login
lists at viper007bond.com
Tue Aug 22 03:11:15 GMT 2006
Can't we just leave it to the user? I'm all for blocking people from the
login from after X fails, but changing passwords and forcing secure
passwords is retarded IMO.
I prefer to not treat the user as if they are stupid, even if they are
(and then it's their fault). Sure, a strength _indicator_ would be cool,
but forcing? I mean, what if I wanna do test/test on my local install?
More information about the wp-hackers