[wp-hackers] Possible security patch

Matt Mullenweg m at mullenweg.com
Sat Dec 5 19:44:07 UTC 2009

On 2009-12-05 8:28 AM, scribu wrote:
> The correct solution would be to not use an admin user for posting. You can
> use the User Switching plugin for making this easier.
> Also, the login name can be harvested by looking at the author archive URLs.

Agreed on this.

Matt Mullenweg
http://ma.tt | http://wordpress.org | http://automattic.com

More information about the wp-hackers mailing list