#11763: Admin Interface - Login - Security Concern ----------------------------+----------------------------------------------- Reporter: AmirHabibi | Owner: nobody Status: new | Milestone: Component: Authentication | Version: 1.1 Keywords: Login Security | Stage: Unreviewed Has_patch: 0 | ----------------------------+----------------------------------------------- Users logging into admin interface and closing the browser without pressing the logout link would cause Django to automatically logs them in next that that the browsers points to the admin URL. This is a serious security issue if user account is accessed by using a public computer or users of an enterprise application where a user may use different computers to login to the account.
-- Ticket URL: <http://code.djangoproject.com/ticket/11763> Django <http://code.djangoproject.com/> The Web framework for perfectionists with deadlines. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django updates" group. To post to this group, send email to django-updates@googlegroups.com To unsubscribe from this group, send email to django-updates+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/django-updates?hl=en -~----------~----~----~----~------~----~------~--~---