Zimbra offers Open Source email server software and shared calendar for Linux and the Mac
Go Back   Zimbra :: Forums > Zimbra Collaboration Suite > Developers
Reload this Page ajax alive after server restart

Welcome to the Zimbra :: Forums!
Welcome, if you would like to post a comment please register. We also encourage you to explore all things Zimbra with our team and members of the community.

Reply
 
LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 01-13-2007, 06:43 PM
tdi tdi is offline
Active Member
  
Posts: 32
Default ajax alive after server restart
I know it is asynchronous, but why is it alive after server restarts ? I mean the web application. It could be a security flaw for me.
__________________
----
My company:
VOIP Integrations, Asterisk AGI Integrations
Reply With Quote
  #2 (permalink)  
Old 01-14-2007, 01:09 AM
Zimbra Employee
  
Posts: 1,434
Default Still authenticated.
Unless the account is explicitly disabled in the directory, your authentication is valid for a fixed amount of time. Restarting the server does not automatically invalidate outstanding auth tokens held by clients.

I don't see a security issue, however.
__________________
Bugzilla - Wiki - Downloads - Before posting... Search!
Reply With Quote
  #3 (permalink)  
Old 01-14-2007, 03:53 AM
tdi tdi is offline
Active Member
  
Posts: 32
Default
if the client->ajax does not use ssl connection, i can see a man in the middle attack probabilty.
__________________
----
My company:
VOIP Integrations, Asterisk AGI Integrations
Reply With Quote
Reply

« Previous Thread | Today's Posts or Week's Posts | Next Thread »

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode


Similar Threads

Product Information

Why Join?

Registering let's you ask questions, makes it easier to search, displays any files attached to posts, and notifies you about replies.

blog.zimbra.com


Home - Blog - Contact Us - Archive - Top


 

SEO by vBSEO ©2011, Crawlability, Inc.