WordPress.org

Ready to get started?Download WordPress

Forums

Login Security Solution
[resolved] WordPress.org Security (2 posts)

  1. pha3z
    Member
    Posted 1 year ago #

    Dan,

    So I've been wondering for a few days... how is WordPress.org secured? The login form doesn't use HTTPS.

    And what about the WordPress software. Does it have any stock security at all?

    http://wordpress.org/extend/plugins/login-security-solution/

  2. Daniel Convissor
    Member
    Plugin Author

    Posted 1 year ago #

    Hi Jim:

    Those are questions for other areas of the the wordpress.org support forums forum. This section is for support of the Login Security Solution.

    But you raise a good point. TLS/HTTPS should be used for the act of logging in (to protect the username and password) and once you are logged in (to protect auth cookie data). I suggest opening a ticket on http://core.trac.wordpress.org/ and then having a polite conversation with the core team on #wordpress-dev.

    --Dan

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags

No tags yet.