http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=13694
Bug ID: 13694
Summary: Potential privacy issue with OPAC
Change sponsored?: ---
Product: Koha
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: major
Priority: P5 - low
Component: OPAC
Assignee: [email protected]
Reporter: [email protected]
QA Contact: [email protected]
This was reported by a partner:
"So there is kind of a pretty big security bug, the logged in pages are
being cached by the browser, so on a public OPAC machine even after
the user has logged out you can click the back button to see all the
account pages they looked at. You can't actually do anything because
then it asks for login, but that's still a really major problem."
I'm not sure how or if we can fix this issue. I tried the solution here:
http://stackoverflow.com/questions/1341089/using-meta-tags-to-turn-off-caching-in-all-browsers
But it did not help at all in FireFox or Chrome.
--
You are receiving this mail because:
You are watching all bug changes.
_______________________________________________
Koha-bugs mailing list
[email protected]
http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs
website : http://www.koha-community.org/
git : http://git.koha-community.org/
bugs : http://bugs.koha-community.org/
