LISTSERV - PAPI Archivos - LISTSERV.REDIRIS.ES

PAPI Archivos

The PAPI authentication and authorization framework

PAPI@LISTSERV.REDIRIS.ES

	Mis archivos LISTSERV
	PAPI Home

	Log In
	Registrarse

	Suscribirse o Darse de baja

	Buscar en mis Archivos

	PAPI Politica de Privacidad

Opciones:	Vista Forum Use Monospaced Font Por defecto enseñar Text Part Mostrar todas las cabeceras de correo
Mensaje:	[<< Primero] [< Prev] [Siguiente >] [Último >>]
Tema:	[<< Primero] [< Prev] [Siguiente >] [Último >>]
Autor:	[<< Primero] [< Prev] [Siguiente >] [Último >>]

Subject:	Important security update for phpPoA
Emisor:	"Diego R. Lopez" <[log in para visualizar]>
Reply To:	The PAPI authentication and authorization framework <[log in para visualizar]>
Fecha:	Sat, 20 Sep 2008 21:46:50 +0200
Content-Type:	text/plain
Parts/Attachments:	text/plain (26 lines)

Dear colleagues,

A security flaw in phpPoA, allowing unauthorized users to gain access  
by copying redirected GPoA URL in response to GET requests, has been  
discovered and solved by the PAPI development team.

Sites using phpPoA are urged to update their installations to version  
1.5, available at
http://forja.rediris.es/frs/download.php/876/phpPoA.1.5.tar.gz

Best regards,

--
"Esta vez no fallaremos, Doctor Infierno"

Dr Diego R. Lopez

Red.es - RedIRIS
The Spanish NREN

e-mail: [log in para visualizar]
jid:        [log in para visualizar]
Tel:    +34 955 056 621
Mobile: +34 669 898 094
-----------------------------------------

ATOM RSS1 RSS2

LISTSERV.REDIRIS.ES