#4 Security Enhancements
The patch and database update will provide the
following security enhancements agains the 0.53.3
version of the DocMgr:
- Restrict a user to change only his/her password, not
the rest of his/her profile
- Login Banner
- Account lockout-feature: Locks an account after a
pre-determined number of failed login attempts
- Last login/ # of failed logins: Displays the last
time a user logged in and the number of failed logins
- Email security enhancements: The user cannot change
the from address in the email message, only from the
profile menu, thus users with only the ability to
change their password will not be able to spoof email
- Anonymous access enhancement: The email generated
when a file is accessed anonymously include the
date/time of the access as well as the originating IP
address
Security Enhancements
SQL statements to alter the associated tables