http://user@host

Foggy · **on:** September 16, 2007, 09:24:46 AM

If you put the wrong user name in a link you can still log in even though the user doesnt exist.

I tried http://fred@localhost and I successfully logged in. :O

I dont think its such a big deal because It only worked because the root of my file system doesnt have restricted access for users set.

rejetto · **Reply #1 on:** September 18, 2007, 08:34:09 AM

fixed in next build

http://user@host - logs in...

Foggy

http://user@host - logs in...

rejetto

Re: http://user@host - logs in...