[vchkpw] vpopmaild - errors on login

Mon, 05 Apr 2004 20:16:29 -0700


I see you have different error messages during login for:


invalid email address

user does not exist

invalid password



It might be better to return the same message for all so the hostile hacker can't learn as much about your users.



Rick

Reply via email to