[geeklog-devel] Bug with anti-hacking functionality can cause users to be incorrectly booted out

Blank, Jessica Jessica.Blank at mtvnmix.com
Thu Mar 13 12:03:32 EDT 2008

Hi gang.

I've been discovering a range of subtle bugs with the login
functionality in the CVS version of Geeklog 1.X. Here's one:

If you make several incorrect login attempts, then attempt to log in
again WITH THE CORRECT INFORMATION, it can show you "Welcome,
[username]" as if you are logged in... and, right below that, a notice
that you had exceeded the number of allowed login attempts.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist8.pair.net/pipermail/geeklog-devel/attachments/20080313/797c8cec/attachment.html>

More information about the geeklog-devel mailing list