Make it more security hardened

  • Resolved minhazulOO7

    (@minhazul007)


    5 years, 9 months ago

    Can you please add a security mechanism which will track how many times a user have requested a “Resend Verification Email”? Also any user can’t abuse the “Resend Verification Email” by placing a restriction like 3-5 times a user can request “Resend Verification Email” for a day, place a timer/ hidden timer like 15-20 min later a user can “Resend Verification Email” not before that, an administrator can manually send a verification email to any user from the user section of WordPress. Please consider these security addition ASAP!

Viewing 6 replies - 1 through 6 (of 6 total)
  • Plugin Author PickPlugins

    (@pickplugins)

    5 years, 9 months ago

    Thanks for your request. we will try your request in future versions, but unfortunately sorry to say, not possible ASAP as our team is doing hard work for many other projects.
    Hope you understand.

    Regards

    Thread Starter minhazulOO7

    (@minhazul007)

    5 years, 9 months ago

    Sorry if I was harsh. I always try to find out the abuse mechanics which a bad actor can use against. Not need to be ASAP. Take your time and implement it. It’s a great plugin already. Give my thanks to your whole team for making awesome plugins. Godspeed.

    Plugin Author PickPlugins

    (@pickplugins)

    5 years, 9 months ago

    Thanks for your understanding, we also concern about security and spam issues and eager to slove as soon as possible.

    Thread Starter minhazulOO7

    (@minhazul007)

    5 years, 8 months ago

    Thanks for adding resend verification email from WordPress user section! This is a must have feature! Thanks a lot! 😇

    Although after updating to the latest version, all of my blocked username and email template have been reset. Glad I saved those info elsewhere. Will this happen again in future release?

    Thread Starter minhazulOO7

    (@minhazul007)

    5 years, 8 months ago

    Just found an issue. User Verification > Email Templates, if I change any of the template to Enable? No and click Save Changes, it will show Enable? Yes after reloading.

    Thread Starter minhazulOO7

    (@minhazul007)

    5 years, 8 months ago

    After checking it thoroughly I can confirm nothing is saving to Email Templates after editing anything and clicking Save Changes. Everything remains as before.

Viewing 6 replies - 1 through 6 (of 6 total)

The topic ‘Make it more security hardened’ is closed to new replies.

Tags