View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0010625 | mantisbt | authentication | public | 2009-06-25 14:35 | 2009-10-07 14:19 |
Reporter | dhx | Assigned To | dhx | ||
Priority | high | Severity | major | Reproducibility | N/A |
Status | closed | Resolution | fixed | ||
Product Version | 1.2.0rc1 | ||||
Target Version | 1.2.0rc2 | Fixed in Version | 1.2.0rc2 | ||
Summary | 0010625: The anonymous user account should always be a protected account | ||||
Description | It is currently possible for an administrator to setup an anonymous user account with the protected flag unset. This allows anonymous users the ability to edit the preferences and options of the global anonymous account. It'd be better if protected mode was forced ON for the anonymous account so that administrators can't make a mistake. | ||||
Tags | No tags attached. | ||||