[Imc-web] Security Issue
Mike Lehman
rebelmike at earthlink.net
Wed Feb 11 15:09:05 CST 2004
Well, duh. That seems to work. Now if I can just remember to do that.
Thanks,
Mike
-----Original Message-----
From: Sascha Meinrath <sascha at ucimc.org>
Sent: Feb 11, 2004 12:29 PM
To: Mike Lehman <rebelmike at earthlink.net>
Cc: imc-web at ucimc.org
Subject: Re: [Imc-web] Security Issue
i think that once you log out it kills the cookie.
can anyone confirm?
--sascha
On Wed, 11 Feb 2004, Mike Lehman wrote:
> This occured to me after the new install of Dada, but I'd forgotten about it until today. The new version puts out a cookie that recognizes you noyt only as a user, but also as an editor. What happens is that once you've signed on as an editor on a machine that takes cookies (I know I can turn this off, but it would be a pain to do everytime I visit UC IMC) anyone who uses the machine afterwards can also go to the website and be recognized as an editor.
>
More information about the IMC-Web
mailing list