News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Ed Finkler's Blog:
Encouraging steps towards security in Wordpress 2.5
April 02, 2008 @ 21:09:47

Ed Finkler, not normally a big fan of the WordPress PHP-based blogging system, has pointed out some positive steps that were made in the latest release in the security arena.

Anyone who gets me liquored up knows that I'm not a fan of Wordpress. I think it's great from a user (that is, the person writing the content) standpoint, but it has lagged behind severely in terms of security, and I don't believe its popularity is the sole reason WP has been the subject of dozens of vulnerability reports every year. That being said, the WP 2.5 release appears to offer significant improvements in a couple areas: password hashes and cookie data encryption.

He mentions two things in particular - their addition of salted passwords and secure cookies.

0 comments voice your opinion now!
wordpress security secure cookie password hash blog


blog comments powered by Disqus

Similar Posts

DevShed: Sessions and Cookies

FrSIRT: Vivvo Article Management CMS SQL Injection and PHP File Inclusion Vulnerabilities

Ivo Jansch\'s Blog: How a PHP notice revealed a quirk of Norton Internet Security

Ryan Malesevich's Blog: Comments Closed After 21 Days

Joshua Thijssen: Installing composer: russian roulette.


Community Events

Don't see your event here?
Let us know!


example series php7 composer application podcast framework laravel symfony api part2 introduction interview opinion list language conference community yii2 project

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework