Mike Collins wrote: > Jeff, > > We will work with 2 customers from this thread. We have started contacting > them already. You did not mention if you are experiencing this issue are if > you are just concerned.
We believe we have experienced this issue, on a high-traffic ecommerce site. To the best of our ability, we ruled out other possible causes, such as caching proxy servers. As you can imagine, customers get pretty upset when they see other people's addresses/personal info instead of their own. > > Also keep in mind that it is very common to find issues like these > eventually reveal no associations to past issues. No matter how it ends up > I will post the findings to this list. Yes, I understand that. But the fact that a bug of this magnitude *ever* got released is disconcerting. I'm not looking to debate the subject; I'm just expressing my opinion. And I'm not trying to bash JRun. I used to be a strong proponent of the product. But given the initial existence of the bug, and apparent inability to fix it, I have lost faith. I hope you can understand my point of view. > >>From what I know about the history of the previous Duplicate Session issue > it seems we did reproduce it, we then fixed it , issued a security bulletin > and then created a distinct patch available for download. We did not take > this lightly at any point. I'm not claiming Macromedia took it lightly. At the same time, it's obvious that Macromedia has not been successful at correcting it. -- Jeffrey Ramin Berbee 5520 Research Park Drive Madison, WI 53711 [EMAIL PROTECTED] 608.298.1024 Berbee...putting the E in business ______________________________________________________________________ Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
