[wp-trac] [WordPress Trac] #52544: Removing database tables allows anyone to take over all website files
WordPress Trac
noreply at wordpress.org
Tue Mar 30 10:59:05 UTC 2021
#52544: Removing database tables allows anyone to take over all website files
-----------------------------+------------------------------
Reporter: winternetstudio | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Security | Version: 5.6.1
Severity: major | Resolution:
Keywords: | Focuses:
-----------------------------+------------------------------
Comment (by winternetstudio):
So there is no reason whatsoever to try and avoid user errors?? Whether
they are on purpose or by mistake (which was our scenario)?! Why do you
think serious websites go through leaps and bounds by implementing
password strength enforcements, 2FA, and all kinds of stuff to help the
human factor not to become a problem?
Your logic is really flawed.
And please answer me on this: You ignore the point that there is no reason
to have the possibility to install WordPress a second time - why is it
more important to have that feature than helping to avoid human mistakes
(or even malicious plugins)?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/52544#comment:8>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list