I don't get it. Why would somebody use SMS instead of something like email to two step authenticate their login?
Who pays for the text message?
What if the SMS server is down? - Can I still login?
What does the plugin author do with my mobile number?
There are other ways to get hijacked other than simple username/password breaches. Just use SSL on your login page if you are concerned about u/p sniffing.
LOL. To be fair wordpress is targeted for the same reasons that MS windows and IE are. Because a majority of websites use it.
Safest way to keep your wordpress installation from being exploited is to keep it up to date and run it on a secure hosting service.
I recently failed to keep up to date and paid the price. Albeit a small one.
One thing I hate about WP is that it outputs <meta generator="Wordpress 2.5.1"> its just a red flag to a bull when it comes to scripts / script kiddies. Of course there are other ways to tell its WP but why make it more obvious than need be.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.