[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Security?

Subject: [cobalt-users] Security?
From: "Andy Jacobs" <andy@xxxxxxxxxxxxxxx>
Date: Fri Jan 10 05:39:38 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Hi all,

Just had a customer call and am a bit confused:

He goes to:

www.hisdomain.co.uk/admin

Types WRONGusername and password and gets the menu just the same as I would
get if I went to:

my.ip.add.ress/siteadmin

and typed my username and password in.

Now it just happens that with this particular user, the password is the same
as my siteadmin (long story) and the username is different.  He typed in
admin as the username rather than hisdomainadmin and this is what happened.

I'm guessing that you could use any domain on the server and, as long as you
get the right username and password, you would be in?

Andy
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.434 / Virus Database: 243 - Release Date: 25/12/02

Follow-Ups:
- Re: [cobalt-users] Security?
  - From: Bruce Timberlake
- RE: [cobalt-users] Security?
  - From: Gavin Nelmes-Crocker
- Re: [cobalt-users] Security?
  - From: Gerald Waugh

Prev by Date: Re: [cobalt-users] /home/tmp -> safe to clear?
Next by Date: Re: [cobalt-users] /home/tmp -> safe to clear?
Previous by thread: Re: [cobalt-users] from: Nobody
Next by thread: Re: [cobalt-users] Security?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index