[Baypiggies] Security bloopers (was GUI Bloopers)
Aahz
aahz at pythoncraft.com
Fri Apr 23 03:55:18 CEST 2010
On Thu, Apr 22, 2010, Isaac wrote:
>
> "And the username you entered does not match any account on record here,
> maybe somewhere else?"
Being serious for a moment: no
Generally speaking, one principle of security is that you never let
crackers know whether any given username exists on your system.
--
Aahz (aahz at pythoncraft.com) <*> http://www.pythoncraft.com/
"It is easier to optimize correct code than to correct optimized code."
--Bill Harlan
More information about the Baypiggies
mailing list