Could this be a sign of some kind of brute force or some kind of DoS attack? Anyone else have this issue with a public server? MapGuide 2.2 Open Source / IIS / Windows 2008. Please respond as we have a client that is about to drop MapGuide because of this and we don't have much of a solution yet. I know we can run the server in debug (console) and maybe help the developers narrow this exploit down BUT I was hoping this might of already been tackled... maybe fixed in 2.4?
<2012-05-11T10:27:18> 600 Ajax Viewer 150.70.75.29 Error: Session has expired or is invalid. Please log in again. StackTrace: - MgSiteServiceHandler.ProcessOperation() line 83 file c:\builds\mg22win32\mgdev\server\src\services\site\SiteServiceHandler.cpp - MgOpAuthenticate.Execute() line 107 file c:\builds\mg22win32\mgdev\server\src\services\site\OpAuthenticate.cpp - MgServerSiteService.Authenticate() line 709 file c:\builds\mg22win32\mgdev\server\src\services\site\ServerSiteService.cpp - MgSecurityManager.Authenticate() line 224 file c:\builds\mg22win32\mgdev\server\src\common\manager\SecurityManager.cpp - MgSessionCache.GetSessionInfo() line 175 file c:\builds\mg22win32\mgdev\server\src\common\manager\SessionCache.cpp -- View this message in context: http://osgeo-org.1560.n6.nabble.com/Error-Session-has-expired-or-is-invalid-Please-log-in-again-Server-Crash-from-Asia-IP-EVERYDAY-tp4974449.html Sent from the MapGuide Users mailing list archive at Nabble.com. _______________________________________________ mapguide-users mailing list mapguide-users@lists.osgeo.org http://lists.osgeo.org/mailman/listinfo/mapguide-users
