[wp-trac] [WordPress Trac] #5066: Anonymize update checking

WordPress Trac wp-trac at lists.automattic.com
Thu Dec 17 17:19:34 UTC 2009


#5066: Anonymize update checking
-------------------------------------------+--------------------------------
 Reporter:  zamoose                        |        Owner:  anonymous
     Type:  enhancement                    |       Status:  reopened 
 Priority:  normal                         |    Milestone:  3.0      
Component:  Administration                 |      Version:           
 Severity:  normal                         |   Resolution:           
 Keywords:  has-patch 2nd-opinion privacy  |  
-------------------------------------------+--------------------------------

Comment(by docwhat):

 Replying to [comment:38 chmac]:
 > zamoose, you raise some interesting scenarios where privacy becomes very
 important. I think because your scenarios are all based on wp.org being
 compromised, it's unlikely to hold much sway with the decision makers.

 WP.org doesn't have to be compromised, a man-in-the-middle attack would
 work as well.  But either way, why wouldn't it hold sway?  Unless
 wordpress.org signs an contract with me that contains penalties for being
 hacked, I don't see how or why I should trust them with my data.

 The fact they don't need it just rubs salt in the wound.

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/5066#comment:39>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software


More information about the wp-trac mailing list