[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] Re: NeoMail 1.25
- Subject: RE: [cobalt-users] Re: NeoMail 1.25
- From: "Paul H Upton" <Paul@xxxxxxxxxxxxxxxxx>
- Date: Thu Sep 20 16:14:05 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Checkout Adjeweb from www.adjeweb.com This product does not look as pretty
but its much more reliable to use. I swapped recently after having too many
problems with Neomail on 2 different boxes. I can live without the pretty
GUI as reliability is key to my installation.
Paul
-----Original Message-----
From: cobalt-users-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-users-admin@xxxxxxxxxxxxxxx]On Behalf Of Andy Robinowitz
Sent: 14 September 2001 01:56
To: cobalt-users@xxxxxxxxxxxxxxx
Subject: [cobalt-users] Re: NeoMail 1.25
I just installed the NeoMail 1.25 and was testing
the program and found what I think is a bug.
John Doe who runs www.site1.com can login via
another site on the same server (for example
www.site2.com/neomail/). Then John enters his
username/password combo (for site1) and he is
granted access even though he is not associated
with www.site2.com. It looks like John can now
send messages as john@xxxxxxxxxx
This seems this might be a security issues to me?
Anyone else notice this?
Thanks,
Andy Robinowitz
Organic Hosting, LLC
http://www.organichosting.com
__________________________________________________
Terrorist Attacks on U.S. - How can you help?
Donate cash, emergency relief information
http://dailynews.yahoo.com/fc/US/Emergency_Information/
_______________________________________________
cobalt-users mailing list
cobalt-users@xxxxxxxxxxxxxxx
To Subscribe or Unsubscribe, please go to:
http://list.cobalt.com/mailman/listinfo/cobalt-users