[wp-hackers] Securing Wordpress Login
Robert Deaton
false.hopes at gmail.com
Tue Aug 22 03:59:58 GMT 2006
On 8/21/06, Viper007Bond <lists at viper007bond.com> wrote:
> Can't we just leave it to the user? I'm all for blocking people from the
> login from after X fails, but changing passwords and forcing secure
> passwords is retarded IMO.
>
> I prefer to not treat the user as if they are stupid, even if they are
> (and then it's their fault). Sure, a strength _indicator_ would be cool,
> but forcing? I mean, what if I wanna do test/test on my local install?
That's why my stuff is a plugin, and never, ever, ever recommended for
core inclusion.
--
--Robert Deaton
More information about the wp-hackers
mailing list