[geeklog-devel] Bug with anti-hacking functionality can cause users to be incorrectly booted out
Jessica.Blank at mtvnmix.com
Thu Mar 13 12:03:32 EDT 2008
I've been discovering a range of subtle bugs with the login
functionality in the CVS version of Geeklog 1.X. Here's one:
If you make several incorrect login attempts, then attempt to log in
again WITH THE CORRECT INFORMATION, it can show you "Welcome,
[username]" as if you are logged in... and, right below that, a notice
that you had exceeded the number of allowed login attempts.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the geeklog-devel