[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date ][Minivend by thread ]

[ic] UserDB/UI Access Security Consideration

To: interchange-users@minivend.com
Subject: [ic] UserDB/UI Access Security Consideration
From: Stefan Hornburg <racke@linuxia.de>
Date: 15 Oct 2000 13:41:26 +0200
List-Id: Interchange Users (high volume) <interchange-users.www.minivend.com>
Reply-To: interchange-users@minivend.com
Sender: interchange-users-admin@minivend.com


Something that is troubling me quite some time is the error message
if the authentification fails. It should at least not reveal the fact that
the user doesn't exist. IMHO it is not a good idea to supply a possible
intruder with information about your system. What do you think about it ?

Bye
        Racke
 
-- 
LinuXia Systems && Cobolt NetServices, eCommerce and more
Shop- und Datenbanklösungen mit MiniVend, Firewalls auf Debian-Basis
http://www.linuxia.de - http://www.cobolt.net
--> Junior Officer of the MiniVend/Interchange Bug Patrol <--- 

_______________________________________________
Interchange-users mailing list
Interchange-users@www.minivend.com
http://www.minivend.com/mailman/listinfo/interchange-users

Prev by Date: [ic] Interchange installation on Virtual Server revisited
Next by Date: Re: [mv] Troubleshooting
Prev by thread: [ic] Interchange installation on Virtual Server revisited
Next by thread: [ic] V0.3 of cpan_local_install
Index(es):
- Date
- Thread