[geeklog-devel] Bug with anti-hacking functionality can cause users to be incorrectly booted out
Blank, Jessica
Jessica.Blank at mtvnmix.com
Thu Mar 13 12:03:32 EDT 2008
Hi gang.
I've been discovering a range of subtle bugs with the login
functionality in the CVS version of Geeklog 1.X. Here's one:
If you make several incorrect login attempts, then attempt to log in
again WITH THE CORRECT INFORMATION, it can show you "Welcome,
[username]" as if you are logged in... and, right below that, a notice
that you had exceeded the number of allowed login attempts.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist8.pair.net/pipermail/geeklog-devel/attachments/20080313/797c8cec/attachment.html>
More information about the geeklog-devel
mailing list