Re: Authentication Security Problem WSS and OWA - Possible Bug?
- From: David Wang <w3.4you@xxxxxxxxx>
- Date: Wed, 9 Jan 2008 02:35:36 -0800 (PST)
On Jan 8, 7:42 pm, TomT <T...@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Windows Server 2003 being connected to through Windows VPN using RMA. Shared
remote Panasonic ToughBooks running XPP. generic Windows logon, VPN uses
shared non-wss or exchange fake user, and once logged on users enter their
user/password in IE logon window.
The problem is that one or two users cannot be logged out and even after
restarting the machine will authenticate through both WSS and OWA. Big
problem when others have access to email and WSS records. Any help
appreciated.
It sounds like you are trying to multiplex multiple users on top of a
single Windows user and implemented a proprietary "log out"
functionality which is failing. You need to detail exactly what you
mean by "log out" because right now this looks like a security issue
with your customization of WSS and OWA.
Or use Integrated Authentication which does not have this problem.
//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//
.
- Prev by Date: Re: Authentication Security Problem WSS and OWA - Possible Bug?
- Next by Date: RE: SSL 2.0
- Previous by thread: Re: Authentication Security Problem WSS and OWA - Possible Bug?
- Next by thread: URLScan
- Index(es):
Relevant Pages
|
