[Koha-bugs] [Bug 10177] New: Koha Accepts Seven "Space" Characters as a Valid Password
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu May 2 22:01:37 CEST 2013
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=10177
Bug ID: 10177
Summary: Koha Accepts Seven "Space" Characters as a Valid
Password
Classification: Unclassified
Change sponsored?: ---
Product: Koha
Version: 3.10
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5 - low
Component: Authentication
Assignee: gmcharlt at gmail.com
Reporter: glawson at rhcl.org
CC: dpavlin at rot13.org
Koha 3.10.03 and presumably earlier versions accept seven "space" characters as
a valid password.
Concerns:
1. Some third party software using SIP to check the Koha database to
authenticate users may interpret all blank characters, or even a single
terminal blank character, as an invalid password.
2. gmcharlt suggests that patches submitted in the future may strip trailing
whitespace characters in form input, causing pernicious perturbations.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list