[wp-trac] [WordPress Trac] #44186: Possibles enhancements to 4.9.6 privacy tools
WordPress Trac
noreply at wordpress.org
Tue May 22 14:21:25 UTC 2018
#44186: Possibles enhancements to 4.9.6 privacy tools
-------------------------+------------------------------
Reporter: mnzhc | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Privacy | Version: 4.9.6
Severity: normal | Resolution:
Keywords: | Focuses:
-------------------------+------------------------------
Comment (by Clorith):
Hi there, and welcome to the WordPress trac!
I had a quick read of the ticket, and personally I think this all sounds
like ideal candidates for plugins. In most cases, users won't receive that
many requests that they need a front-end system for data requests, and any
request for sending and erasing data should be validated by the site owner
before it's carried out.
Any major site that is likely to receive these will already have
established procedures to follow and will, as you mentioned, not
necessarily use the built in features in WordPress either.
As for the process of sending data as zip files, there are a few scenarios
where this is beneficial (and it has become sort of a standard as you
don't know how much data will be sent, and what data it will include, if
someone extends the exporter to include files for example). Let's also not
forget that as soon as there's a front-facing version of a page, it is
susceptible to caching, if a URL is cached, and then brute force attempts
at finding a hashed address carry through, you've got a much bigger issue
on your hands. (just to name some of the more likely scenarios).
--
Ticket URL: <https://core.trac.wordpress.org/ticket/44186#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list