On Mon, Jul 18, 2005 at 12:44:24AM +0200, Petter Reinholdtsen wrote:
> What do you mean? Can one continue to work in sql-ledger after
> logging out? Your description lead me to think that you expected the
> browsers cached pages to disappear at log out time. What did you
> expect would happen wh
[William McKee]
> However, the session is still active which means anyone else may
> walk up to the system and use the History or the Back button of the
> browser to access all account information for the previously logged
> in user.
What do you mean? Can one continue to work in sql-ledger after
Package: sql-ledger
Version: 2.4.7-2
Severity: grave
Justification: user security hole
Using the Logout option on the menu takes the user back to the login screen.
However, the session is still active which means anyone else may walk up to the
system and use the History or the Back button of the
3 matches
Mail list logo
