While that could work, it doesn't seem to be very more secure, as I can still capture the hashed password and use that to login or send email requests. In the past one could login with the hashed password from the usertool, I'm not sure if that still works...lets hope not :)
Hugo On Nov 8, 2007 5:26 PM, patrick zandi <[EMAIL PROTECTED]> wrote: > ** > Geoff, > he have not seen you in a while... > What I did was a little sneeky, but it works.. > Create an account that only hase access to the form it is submitting too. > ensure that it can submit.. > after the account is made-- let say it is toast --- and the password is > burnt > put burnt into the userform save it.. go to the database get the Encrypted > hash and put that in the email as the password. > or you could use the ar.conf to do the same thing.. > > Seems to work for me.. > > > > > On 11/7/07, Geoffrey Endresen <[EMAIL PROTECTED]> wrote: > > Sorry, I just haven't spent enough time with this one. I'm trying to > > send an email to the AR System server to update a ticket. > > Sure, I can just create a filter on the AR System Email Message form > > that pushes the data to another form, but I assume that breaks > > licensing. > > > > What am I missing? People cannot really be sending emails to the AR > > System Server with clear text password? > > > > -- > > -Geoff Endresen > > Amazon.com > > > > > _______________________________________________________________________________ > > UNSUBSCRIBE or access ARSlist Archives at www.arslist.org > > Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" > > > > > > -- > Patrick Zandi __20060125_______________________This posting was submitted > with HTML in it___ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
