By restarting, it sounds like you are keeping some things in memory to do your comparison with. Would that be a place to start.
Without knowing more on how your doing your authentication, it would be hard to give an accurate answer either. -- Regards, Andrew Scott WebSite: http://www.andyscott.id.au/ Google+: http://plus.google.com/108193156965451149543 On Sun, Mar 11, 2012 at 9:59 AM, Richard Steele <[email protected]> wrote: > > We offer a template-based, self-administered solution for hosting websites > and have a CF8 Enterprise server with two load-balanced. Yesterday, for the > first time in 6 years of offering hosting services, we had a bizarre user > login problem event. A user logged into to administer their hosted site > using their normal credentials and another user's administration came up!! > I then tried logging into their administrative backend and the same thing > happened to me. I then logged out and tried yet another user's credentials > and that worked fine, but when I logged out of their administrative backend > I was taken to that other user's site's administration (the one that was > the wrong one in the first example) instead of to the hosting site's home > page. > > I thought we might have been hacked, but no login files' date times had > changed. The application.cfm had not changed either. > > I restarted both instances of CF server and all is back to normal. > > I'm completely baffeled and concerned. What in the world could cause this > that a CF service restart would fix? > Thanks in advance. > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:350344 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
