[Kolab-devel] Password change problem
Dan Ohnesorg
Dan at ohnesorg.cz
Mon Dec 1 15:38:36 CET 2003
Dne Mon, Dec 01, 2003 at 02:21:03PM +0200, Stephan Buys napsal:
> Are you sure? I have just reset my own password through the web interface and it
> worked.
Original version gets User not found message. This version changes the
password. I will also try to get some more info.
BTW I see, that kolab admin interface uses GET in many forms. Even in user
creating and password change. I find it as security problem, the URL is in
apache logs, even for SSL connections. POST will be match better.
If I select user modifiing, the password is prefilled in the form, this is also
not good idea too.
cheers
dan
More information about the devel
mailing list