[ic] security

Porl porl@namee.com.au
Fri, 26 Jan 2001 09:32:35 +1100

Ron & Sonny
Just my view on this matter - the problem certainly needs to be fixed. I 
personally am not smart enough to do this. What we are offering clients is 
a highly secure and stable platform. Interchange is singularly brilliant at 
many of these things. 10000% on anything else.

At 14:09 25/01/2001 -0800, you wrote:
>I just had a client report that his users were able to login without
>specifying a username and password.  When they did it would pull up info for
>a person by the name of Kelly.  I looked in the db and sure enough the
>username field was blank.  It appears that there is a bug somewher ein the
>accoutn creation routine that allows for this happen.  We have not seen hwo
>this is done, jsut know that it can be done.  Any ideas?