Quote:
Originally Posted by Nasty
|
^^that plugin is great for keeping out specific people who want to fuck with someone's wordpress, but from the articles linked in the OP it appears that so many different IPs (90 000 unique IPs) are involved that the plugin isn't very effective
it's still a great plugin, just not against this sort of attack
Quote:
Originally Posted by ottopottomouse
The vulnerability is just down to the number of users and the likelihood of people being stupid enough to use abc123 as their password.
|
^^^I'm saying.
unrelated to wordpress, I had a bunch of weird questions from pseudo-customers a few weeks back (3 on the same day) asking me to play the 'porn star name game' (where the answers are one's middle name, street one grew up on, name of one's first pet, etc). It didn't occur to me that it was anything significant (other than being weird) until I read that those are often password retrieval questions for online accounts. It was a total 'duh' moment and I'm glad I just ignored the losers who had asked me.
/threadjack
thanks for posting the links, AdultKing