Gossamer Forum
Quote Reply
Security
What kind of security features have you built into Gossamer Mail?

Here are what I'm interested in:
Do you prevent all javascripts embedded inside e-mails from executing? Also, do you disallow iframes, styles, and other workarounds that can lead to security risks? Hotmail has gone through lots of these bugs...

Also, when user logs in, and then logs out, but forgets to close browser. Can someone else come in, press the back button until he's all the way to the page AFTER the login page, press refresh, and have the browser ask if he wants to re-POST his info? This basically lets intruder re-post the password (even though he can't see it) and login to the victim's account.



Subject Author Views Date
Thread Security Aqua 2780 May 19, 2000, 5:26 AM
Post Re: Security
Alex 2674 May 20, 2000, 8:40 AM