[wp-hackers] Possible security patch
scribu at gmail.com
Mon Dec 7 16:01:47 UTC 2009
On Mon, Dec 7, 2009 at 4:32 PM, Demetris <kikizas at gmail.com> wrote:
> If the problem we discuss here is that exposed/known usernames make it
> possible to guess or bruteforce passwords for those usernames,
> wouldn’t be a solution to simply add to the core something like the
> Limit Login Attempts plugins by Johan Eenfeldt?
> If I understand the issue correctly, I think that a solution like this
> would address it without adding any complexity to the UI (and without
> unloading cognitive burden on the user).
The best solution I've heard so far. +1
More information about the wp-hackers