[wp-trac] [WordPress Trac] #11454: Add suffix to table prefix on installation
WordPress Trac
wp-trac at lists.automattic.com
Sun Feb 14 22:09:11 UTC 2010
#11454: Add suffix to table prefix on installation
-------------------------+--------------------------------------------------
Reporter: micasuh | Owner: ryan
Type: enhancement | Status: new
Priority: high | Milestone: 3.0
Component: Security | Version: 2.9
Severity: normal | Keywords: needs-patch dev-feedback
-------------------------+--------------------------------------------------
Changes (by micasuh):
* priority: normal => high
Comment:
Replying to [comment:8 sivel]:
> Personally a -1 from me. There are hundreds of sites out that that
recommend doing it on the install, and you are given the ability to modify
the table prefix on install. I see this more of a problem with the
1-click installer than WordPress itself.
It is poor logic to assume that everyone uses 1-click installer and/or
understands security vulnerabilities such as this and knows how to take
action and help prevent it.
> If we do anything I think we should create a codex entry with
information as to why you should change the table prefix in *our*
installer and link to that codex entry above or below the table prefix
field.
I completely agree with this!
--
Ticket URL: <http://core.trac.wordpress.org/ticket/11454#comment:9>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list