User Sync Security Concern

i have a serious concern. Is the sub site able to get further information from the master site?

My master site has admin accounts and other information i dont want accessed. Can the sub site hack the master site is what i am asking. What are the vulnerabilities of using this plugin? i want to make my master site completely safe and only transfer newly created users to my subsite.

And does it copy newly created admin accounts? i am concerned about vulnerability security risk here, please can you tell me.

  • Jude
    • DEV MAN

    Hey Jared

    Hope all is well with you and welcome to the community !

    You can be rest assured this plugin is safe, partly because that's how WP handles security too. A user account consists of 2 primary entries in the DB. One in the wp_users table and the other in the wp_usermeta tables. This is what the plugin keeps safe. At no point can we view / modify the password. Its hashed before it gets stored in the DB and the hashed copy is what gets synced.

    Hope that clarifies.

    Thank you for being a WPMU DEV member and have a fantastic day !


Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.