<div dir="ltr"><div>To be fair, just about any wordpress installation is so ridiculously insecure that this hardly matters. The sites themselves are almost never behind SSL..<br><br></div>Dustin<br></div><div class="gmail_extra"><br><div class="gmail_quote">2016-08-14 20:02 GMT-04:00 George Rosamond <span dir="ltr"><<a href="mailto:george@ceetonetechnology.com" target="_blank">george@ceetonetechnology.com</a>></span>:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On 08/12/16 21:39, Jaime wrote:<br>
> Don't use FTP if SFTP, FTPS, rsync over SSH, or SCP are options. FTP is<br>
> cleartext and can be intercepted -- including the point at which the<br>
> password is transmitted. All of the other options I mentioned avoid that.<br>
<br>
I think even the least technical end-user can and must be trained to use<br>
ssh keys with passwords securely. Take the time, and then make them<br>
update their keys periodically. It's high-time to take on any potential<br>
resistance.<br>
<br>
g<br>
<br>
______________________________<wbr>_________________<br>
CDBUG-talk mailing list<br>
<a href="mailto:CDBUG-talk@lists.nycbug.org">CDBUG-talk@lists.nycbug.org</a><br>
<a href="http://lists.nycbug.org/mailman/listinfo/cdbug-talk" rel="noreferrer" target="_blank">http://lists.nycbug.org/<wbr>mailman/listinfo/cdbug-talk</a><br>
</blockquote></div><br></div>