Ticket #4233 (closed defect: duplicate)
HTTP 500 when trying to log in.
|Reported by:||marc@…||Owned by:||jamor@…|
|Severity:||normal||Keywords:||dos, username, 500, critical error|
It is possible to crash the usercorner service by simply logging in.
How to reproduce:
1) Visit the usercorner login page
2) enter a valid username and add a space at the end of it (like a copy&paste style error)
3) enter your valid password
The workaround to get your usercorner back is to flush the files in the sids directory located @ /var/lib/zentyal-usercorner/sids/.
I didn't tested every aspect of this problem since I discovered it on a production server. I just stoped by for reporting this loophole.
Done using 10.04, 10.10 and ICS workspaces.