Opened 4 years ago

Last modified 2 years ago

#10863 new enhancement

Gravatars without email all end up looking generic

Reported by: thecodepro Owned by:
Priority: low Milestone: Future Release
Component: Comments Version:
Severity: minor Keywords: has-patch
Cc:

Description

When your blog has this option turned on

"Comment author must fill out name and e-mail"

and multiple users leave comments, if these users do not provide email addresses it will appear that they are all the same user as the identicon/monsterid/etc icons will be the same.

With two additional lines of code, you can substitute the IP address in place of the email to get a unique hash in order to distinguish one anonymous/non-emailed user from another.

Patch is attached

Attachments (2)

avatar.diff (509 bytes) - added by thecodepro 4 years ago.
adds code to use IP address if email is empty for gravatar handoff
avatar-nonce.diff (658 bytes) - added by thecodepro 4 years ago.
Same as before, but using the NONCE key to obsucre the IP from rainbow reading

Download all attachments as: .zip

Change History (7)

thecodepro4 years ago

adds code to use IP address if email is empty for gravatar handoff

comment:1   scribu4 years ago

  • Milestone changed from Unassigned to 2.9

comment:2   hakre4 years ago

Isn't it possible to reverse-engeneer the comment's authors IP-address then? Some hashing needed?

comment:3   thecodepro4 years ago

Yes, I suppose you could use a rainbow table to reverse the IP address for anonymous posters.

Could probably salt this with on of those constants defined in wp-config.php if you wanted to make it UBER secure.

I'll look into that real quick...

thecodepro4 years ago

Same as before, but using the NONCE key to obsucre the IP from rainbow reading

comment:4   ryan4 years ago

  • Milestone changed from 2.9 to Future Release

comment:5   computerwiz9082 years ago

  • Keywords comments gravatar avatar removed
Note: See TracTickets for help on using tickets.