Dear colleagues, A security flaw in phpPoA, allowing unauthorized users to gain access by copying redirected GPoA URL in response to GET requests, has been discovered and solved by the PAPI development team. Sites using phpPoA are urged to update their installations to version 1.5, available at http://forja.rediris.es/frs/download.php/876/phpPoA.1.5.tar.gz Best regards, -- "Esta vez no fallaremos, Doctor Infierno" Dr Diego R. Lopez Red.es - RedIRIS The Spanish NREN e-mail: [log in para visualizar] jid: [log in para visualizar] Tel: +34 955 056 621 Mobile: +34 669 898 094 -----------------------------------------