wow! you are right. I tried it by copying the url shutting down all browsers opening the back up and I was able to login. I though I read somewhere that this was fixed... I guess not.
_______________________________________ Michael Davidovich http://kantora.com 619.813.5792 [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael E. Middleton Sent: Tuesday, February 05, 2002 2:07 PM To: [EMAIL PROTECTED] Subject: [IMail Forum] security question A customer writes: > I dont know if its a big deal, well.. It is actually. heres the deal. If > you're in the web interface doing something, let say messing > with your filters, the url can possibly be hacked. I copied > the url and pasted it into a different browser (like IE as > opposed to Netscape) and it let me in to the modify > screen. I thought it was odd that it didnt prompt me to log in > but just took the url. so I tried the same url on a > different computer all together. It worked again. I dont know the > caliber of your other clients, but anyone using this system > on a public terminal can easily have their mailbox > comprimised just by looking at the history. Comments? Mike Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/
