[Typo3-dev] BE Login through URL?

Wengrzik, Andreas Wengrzik at ewr.de
Thu May 27 10:49:53 CEST 2004


It´s notan user with many rights... 
It´s just a test user and this link make it easier for people which
are new to typo3...

just a shortcut.... not really insecure... but you shouldnt shortcut a 
real BE user account...

-----Ursprüngliche Nachricht-----
Von: Stig N. Jepsen [mailto:stig at 8620.dk]
Gesendet: Donnerstag, 27. Mai 2004 10:33
An: typo3-dev at lists.netfielders.de
Betreff: Re: [Typo3-dev] BE Login through URL?


> > And have your clear text password sent over the wire. Only to be
> > sniffed and logged in proxy/server logs.
>
> He asked if it was possible.
> It is.
> we all know this is insecure.

So what Markus Lange does on this homepage:
http://typo3.bgm-gmbh.de/news.0.html (click on the red 'Login')
is basically insecure?

/Stig


_______________________________________________
Typo3-dev mailing list
Typo3-dev at lists.netfielders.de
http://lists.netfielders.de/cgi-bin/mailman/listinfo/typo3-dev





More information about the TYPO3-dev mailing list