Hi Ipex Media. I believe this is due to this vulnerability:
http://www.talsoft.com.ar/index.php/research/security-advisories/wordpress-user-id-and-user-name-disclosure
An attacker could find out if the user is active and gain access to the username.
finally thank you. I’ve searching to why without any clear explanation.
However, I think the problem is deleting this user id 1 may have effect with plugins out there that need user id 1 to work like gravatar.
So I think it would be better idea to move all the post to another user id and changed the user id 1 to just the role of subscriber so there won’t be any danger even if they acees to the username, right?
But then the problem is the comments won’t be transfer and just the post from user Id one.
If there was only a solution out there to import all the posts/comments/settings to different user id this would be great. At the same time, I wish BWSP would allow us to change the user id to any number we want instead of randomly generating one.
Why do you think Gravatar requires a user with the ID of 1?
