WordPress.org

Ready to get started?Download WordPress

Forums

PHP Parsed Posts (5 posts)

  1. Stevarino
    Member
    Posted 10 years ago #

    How about a hack to start this Sunday off? I was frustrated that WordPress spazzes out anytime you try to insert php, so I made it happen. :D
    It's actually a safe hack using my-hacks.php with add_filter and everything! Let me know what you think while I go pray that I havn't opened the pandora's box of WordPress.

  2. phrancey
    Member
    Posted 10 years ago #

    I've been looking for something like this, but have always been worried about the security issues. But, not knowing all that much about security, all I've ever been told is "it's not secure" and never why it's not secure.
    So, could you tell us why your hack is secure, and what makes using php regularly not secure? (for my own enlightenment).

  3. Matt Mullenweg
    Troublemaker
    Posted 10 years ago #

    Basically that any poster could wipe your database and delete all your files, and possibly other important files on your server.

  4. phrancey
    Member
    Posted 10 years ago #

    If you're the only person posting, this wouldn't be an issue though, would it?

  5. Stevarino
    Member
    Posted 10 years ago #

    Matt is totally right. If you have multiple posters, then there is nothing holding them back with this hack. But if it's just you, or you don't have to worry about potential author trouble, then this would work.
    But you also lose security protecting your weblog from yourself. If you don't write safe code (like taking input from a user without checking it for quirks/hacks) then that could bring your post, entire weblog, or maybe even server down. This is the reference to Pandora's Box... :(
    WordPress itself is quite secure. This doesn't make it any less secure, but offers that possibility. Just make sure you know what you're doing and question every line of code.

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags

No tags yet.