> 4) 403 FORBIDDEN
apache configuration should allow access to the requested URL
> Have other people decided to go ahead and allow access? It increases attack
> surface, of course.
Depending on the configuration… can you elaborate more on the increasing attack
surface ? :) (Simply asking!!)
Cheers!
dw.
--
[email protected] :: +1.514.447.4918 (x110) :: www.inverse.ca
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
On 2013-06-28, at 11:30 AM, Rich Graves <[email protected]> wrote:
> I'm surprised I haven't noticed this problem before. It's pretty common.
>
> 1) User registers laptop, chooses email confirmation
> 2) Checks email via smartphone
> 3) Clicks on link
> 4) 403 FORBIDDEN
>
> Have other people decided to go ahead and allow access? It increases attack
> surface, of course.
>
> I've edited the email
> (/usr/local/pf/conf/templates/emails-guest_email_activation.txt.tt) to say
> "Please connect your device to our network and then follow this link:"
> --
> Rich Graves http://claimid.com/rcgraves
> Carleton.edu Sr UNIX and Security Admin
> CMC135: 507-222-7079 Cell: 952-292-6529
>
> ------------------------------------------------------------------------------
> This SF.net email is sponsored by Windows:
>
> Build for Windows Store.
>
> http://p.sf.net/sfu/windows-dev2dev_______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
This SF.net email is sponsored by Windows:
Build for Windows Store.
http://p.sf.net/sfu/windows-dev2dev
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
