Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> WordPress security is complex.

This must be an oxymoron since complexity is the enemy of security.

I think what you meant to say was

> WordPress security is at best ad-hoc, and mostly non-existing



I was replying to

> show me if security is improved! > (which for Wordpress can't be that hard)

that is, to say that the concept of 'WordPress Security' isn't a single simple thing to 'improve'. Unfortunately. If you wrote a set of 10 jillion tests and proved that wordpress core has no possible security vulnerabilities (humour me), that still would not fix 'WordPress Security'.

From a theoretical point of view, you're absolutely right, and I agree with you.

From a practical point of view, WordPress is often 'good enough', and 'works well enough', and has 'few enough security issues', for many people.

Improving security is great, but it's a complex, perhaps impossible problem.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: