Don't allow inactive accounts to authenticate using basic auth
Ricky Zhou
ricky at fedoraproject.org
Sat Mar 21 21:20:28 UTC 2009
On 2009-03-21 08:59:24 PM, Jon Stanley wrote:
> Inactive accounts could authenticate to sites using mod_auth_pgsql.
>
> Pretty sure all of these apps are not under freeze, but rather be safe. Some +1's?
We tested this out on hosted1 with active and inactive accounts, so:
+1
Thanks,
Ricky
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-infrastructure-list/attachments/20090321/4ccaffca/attachment.sig>
More information about the Fedora-infrastructure-list
mailing list