security optimisation

  • hi,
    i noticed that posting a comment while being connected adds my id in the source code, not very secure i think, after googling i found this post, just add to your functions.php child theme to hide your id ; maybe ts would be useful to include it in parent’s theme functions.php ?

    function remove_comment_author_class( $classes ) {
	foreach( $classes as $key => $class ) {
		if(strstr($class, "comment-author-")) {
			unset( $classes[$key] );
		}
	}
	return $classes;
}
add_filter( 'comment_class' , 'remove_comment_author_class' );
Viewing 2 replies - 1 through 2 (of 2 total)
  • Theme Author Tom

    (@edge22)

    Hi there,

    Interesting – this is done by WordPress itself.

    I’ll have to check with the theme review team if adding this is allowed – they generally frown upon removing core WP features from themes on WP.org.

    I’ll let you know ??

    Thread Starter marties

    (@marties)

    Thanks for taking time,
    i know it’s from the core but it’s a long awaiting move (according to posts here and there…)

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘security optimisation’ is closed to new replies.