Results 1 to 3 of 3

Thread: ajax alive after server restart

  1. #1
    tdi's Avatar
    tdi
    tdi is offline Active Member
    Join Date
    Oct 2006
    Location
    Poland
    Posts
    32
    Rep Power
    8

    Default ajax alive after server restart

    I know it is asynchronous, but why is it alive after server restarts ? I mean the web application. It could be a security flaw for me.

  2. #2
    dkarp is offline Zimbra Employee
    Join Date
    Aug 2005
    Posts
    1,433
    Rep Power
    11

    Default Still authenticated.

    Unless the account is explicitly disabled in the directory, your authentication is valid for a fixed amount of time. Restarting the server does not automatically invalidate outstanding auth tokens held by clients.

    I don't see a security issue, however.
    Bugzilla - Wiki - Downloads - Before posting... Search!

  3. #3
    tdi's Avatar
    tdi
    tdi is offline Active Member
    Join Date
    Oct 2006
    Location
    Poland
    Posts
    32
    Rep Power
    8

    Default

    if the client->ajax does not use ssl connection, i can see a man in the middle attack probabilty.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. initializing ldap...FAILED(256)ERROR
    By manjunath in forum Installation
    Replies: 39
    Last Post: 06-07-2013, 10:27 AM
  2. Zimbra fails after working for 2 weeks
    By Linsys in forum Administrators
    Replies: 10
    Last Post: 10-07-2008, 12:42 AM
  3. need advice on configuring zimbra to work with fax server
    By pheonix1t in forum Administrators
    Replies: 0
    Last Post: 07-11-2007, 07:46 PM
  4. Error 256 on Installation
    By RuinExplorer in forum Installation
    Replies: 5
    Last Post: 10-19-2006, 09:19 AM
  5. Getting problems in FC4 while instalation
    By kitty_bhoo in forum Installation
    Replies: 13
    Last Post: 09-12-2006, 10:34 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •