News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Ed Finkler's Blog:
Encouraging steps towards security in Wordpress 2.5
April 02, 2008 @ 21:09:47

Ed Finkler, not normally a big fan of the WordPress PHP-based blogging system, has pointed out some positive steps that were made in the latest release in the security arena.

Anyone who gets me liquored up knows that I'm not a fan of Wordpress. I think it's great from a user (that is, the person writing the content) standpoint, but it has lagged behind severely in terms of security, and I don't believe its popularity is the sole reason WP has been the subject of dozens of vulnerability reports every year. That being said, the WP 2.5 release appears to offer significant improvements in a couple areas: password hashes and cookie data encryption.

He mentions two things in particular - their addition of salted passwords and secure cookies.

0 comments voice your opinion now!
wordpress security secure cookie password hash blog


blog comments powered by Disqus

Similar Posts

Simon Holywell: Improve PHP session cookie security

Rafe Colburn's Blog: A list of engineering blogs

Alison Gianotto's Blog: When Your Wordpress Blog Gets Hacked

ZendCon 2006 Notes: Best Practices for PHP Development

DevShed: Am Introduction to PHP Security


Community Events





Don't see your event here?
Let us know!


series introduction conference tips podcast community development interview release zendserver language code deployment api laravel threedevsandamaybe list framework symfony bugfix

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework