Unified Login Error Messages
·
Changes the login error messages revealing the existence of a user name to a more secure version.
評価
5/5
バージョン
1.0
有効インストール数
200
最終更新日時
Jun 7, 2011
If you log-in to your WordPress backend and enter the right username but a false password WordPress shows the error message “ERROR: The password you entered for the username admin is incorrect. Lost your password?” revealing that the username “admin” is registered and a possible attacker can check passwords with this username to gain access to the installation. This plugin changes the error messages to “ERROR: Invalid user/password combination.” if you enter a non-registered username and/or a false password and makes it more difficult for an attacker to decypher your blog’s passwords.