login telling secrets – big ones

  • I just posted this as a reply elsewhere, but it seems unique (is that good?) and it probably should have its own topic.
    I’ve actually been working with the site awhile, but at an unpublished address.
    Today though, I did a redirect of the home page to the blog url, which officially brought my WP thing into the limelight.
    Then I was visiting a friend a few hours later and couldn’t believe my own eyes when I showed him the site. I wanted to show him the editing functions, so from the blog I clicked the login link, and lo and behold, there we were, not at the login dialog box, but at my own admin editing window!!!
    I hit the logout on his machine, and that seemed to close the open status when we tried again, but now what? How could this have happened and how can it be tested for? Did logging out on his machine even even do anything regarding others? Is the whole world logged in to administer this site for me everytime I log in? We all know what lousy spellers there are out there; can’t let that be a possibility! HEEELLP!!!

Viewing 7 replies - 1 through 7 (of 7 total)

  • Wow!! What was the browser your friend was using, and I hope you are positively certain you had never logged on using that machine before.

    WP use cookie to store your login information. It will not clear it unitl you press the LOGOUT button yourself. Check this out if your like to implement a Remember Me function.
    https://www.scriptygoddess.com/archives/2004/07/01/add-a-remember-me-checkbox-to-the-login-form

    So just because, when you are already logged in, you can go back to the admin area without loggging in again, that doesn’t mean the rest of the world is logged in too. OTOH, if you share your computer with others you might want to always log out before you leave the machine.

    Well that is what paperlion is saying happened to him. I have never seen it but ….

    Thread Starter paperlion

    (@paperlion)

    Okay. Maybe, maybe I was over at this guy’s place a month or two ago, and logged in while he was on the phone or whatever else.
    I’m ashamed to admit it especially since you are all so helpful, but I’m sure we can all breath better now that this will again be in the realm of never having yet happened!
    WP sure does have the memory of an elephant though, huh?!

    I’m having the same problem. My friend just warned me that she could see the “edit this” link on my posts. She is able to do everything I can do, as far as i can tell, from her computer. I have never used her computer to access my WP though we work in the same company.

    I have seen several sites that have “Edit This” showing and clicking on it just gives the login screen. Not sure why it shows, though.

Viewing 7 replies - 1 through 7 (of 7 total)
  • The topic ‘login telling secrets – big ones’ is closed to new replies.