Gossamer Forum: Products: Gossamer Links: Version 1.x: User log on (signup)

Gossamer Threads

Home : Products : Gossamer Links : Version 1.x :

User log on (signup)

Jan 10, 2000, 6:43 PM

pugdog

Veteran / Moderator (6956 posts)

Jan 10, 2000, 6:43 PM

Post #1 of 2

Shortcut

User log on (signup)

I just noticed if a user tries to sign up for the site, and gives a valid UserID and PW, they are logged on while being informed the Username/Password/Email have already been taken.

While this might seem like a good idea, it's also a security hole... sure they could enter that PW/ID ... but they really should be told that the PW/ID/Email is already in use.

Jan 11, 2000, 3:19 AM

widgetz

Veteran (2260 posts)

Jan 11, 2000, 3:19 AM

Post #2 of 2

Shortcut

Re: User log on (signup) In reply to

it's one of many bugs to user.cgi

i already gave alex the fix for it like 3 days ago..

it doesn't actually log them in.. it says they are registered.. but they are not..

http://www.gossamer-threads.com/...um9/HTML/000459.html

jerry

Gossamer Threads is a Vancouver-based company with over 28 years experience in web technology. From development to hosting, we partner with leading organizations around the globe and help to build their web presences, strategies and infrastructures.

Let’s talk: 1-877-715-7676