Path & User Access - Security hole
Brought to you by:
lamonml
Menu
▾
▴
#48 Path & User Access - Security hole
open
nobody
None
5
2003-02-19
2003-02-19
Anonymous
No
Hi,
I use Savant 3.1.
I defined a protected path in the Path menu pointing to
the savant/Root directory : /Root/
I protected it with user access.
When I want to access http://localhost/Root/index.html,
savant prompt me for a username and a password.
When I put a // (double slash) before the protected
resource, the user control is bypassed !
http://localhost//Root/index.html
...
Sebastien.