[development] WordPress 2.3 Spies On Users

Morbus Iff morbus at disobey.com
Tue Sep 25 17:18:04 UTC 2007


Got a chuckle over this:

   http://yro.slashdot.org/yro/07/09/25/1632246.shtml

"Popular open-source blogging engine WordPress has been upgraded to 2.3 
— with some unexpected nasties in the mix. As of version 2.3, WordPress 
now periodically (every 12 hours) sends personally identifying 
information (blog name & URI) to the mothership, along with an alarming 
amount of information including $_SERVER dumps, a list of installed 
plugins, and your current PHP/MySQL settings. Most unfortunately, it 
does not provide any way of disabling this functionality, and WordPress 
does not have any privacy policy protecting this information. In a 
thread about the issue, lead developer Matt Mullenweg defends his 
actions and staunchly refuses to add an opt-in interface, telling users 
to 'fork WordPress' if they aren't willing to put up with this behavior."

-- 
Morbus Iff ( i know a little of everything, a lot of nothing. )
Technical: http://www.oreillynet.com/pub/au/779
Enjoy my: http://www.disobey.com/ and http://www.60bwc.com/
aim: akaMorbus / skype: morbusiff / icq: 2927491 / jabber.org: morbus



More information about the development mailing list