LISTSERV - PAPI Archivos - LISTSERV.REDIRIS.ES

PAPI Archivos

The PAPI authentication and authorization framework

PAPI@LISTSERV.REDIRIS.ES

	Mis archivos LISTSERV
	PAPI Home

	Log In
	Registrarse

	Suscribirse o Darse de baja

	Buscar en mis Archivos

	PAPI Politica de Privacidad

Opciones:	Vista Forum Use Monospaced Font Mostrar las partes HTML Esconda cabeceras de correo
Mensaje:	[<< Primero] [< Prev] [Siguiente >] [Último >>]
Tema:	[<< Primero] [< Prev] [Siguiente >] [Último >>]
Autor:	[<< Primero] [< Prev] [Siguiente >] [Último >>]

Mime-Version:	1.0 (Apple Message framework v929.2)
X-Original-To:	[log in para visualizar]
Date:	Sat, 20 Sep 2008 21:46:50 +0200
Subject:	Important security update for phpPoA
Reply-To:	The PAPI authentication and authorization framework <[log in para visualizar]>
Emisor:	"Diego R. Lopez" <[log in para visualizar]>
Sender:	The PAPI authentication and authorization framework <[log in para visualizar]>
Message-ID:	<[log in para visualizar]>
Content-Transfer-Encoding:	7bit
Received:	by LISTSERV.REDIRIS.ES (LISTSERV-TCP/IP release 14.5) with spool id 5826956 for [log in para visualizar]; Sat, 20 Sep 2008 21:46:51 +0200 from rediris.es (chico.rediris.es [130.206.1.3]) by listserv.rediris.es (Postfix) with ESMTP id EE5A45C201 for <[log in para visualizar]>; Sat, 20 Sep 2008 21:46:50 +0200 (CEST) from [IPv6:::1] (login.rediris.es [130.206.1.21]) by chico.rediris.es (Postfix) with ESMTP id D411044D5F for <[log in para visualizar]>; Sat, 20 Sep 2008 21:46:50 +0200 (CEST)
Content-Type:	text/plain; charset=US-ASCII; format=flowed; delsp=yes
X-Mailer:	Apple Mail (2.929.2)
Delivered-To:	[log in para visualizar]
Parts/Attachments:	text/plain (26 lines)

Dear colleagues,

A security flaw in phpPoA, allowing unauthorized users to gain access  
by copying redirected GPoA URL in response to GET requests, has been  
discovered and solved by the PAPI development team.

Sites using phpPoA are urged to update their installations to version  
1.5, available at
http://forja.rediris.es/frs/download.php/876/phpPoA.1.5.tar.gz

Best regards,

--
"Esta vez no fallaremos, Doctor Infierno"

Dr Diego R. Lopez

Red.es - RedIRIS
The Spanish NREN

e-mail: [log in para visualizar]
jid:        [log in para visualizar]
Tel:    +34 955 056 621
Mobile: +34 669 898 094
-----------------------------------------

ATOM RSS1 RSS2

LISTSERV.REDIRIS.ES