When requesting rma's with a wrong password a box 'cannot read data' is shown as well as "11:01:25 Connection from 181.2.201.81 .. Accepted" on the rma's log.
Wrong passwords would have to be stated as such.
1st, it makes debugging easier
2nd right now I don't see intrusion attemts
Thanks, Rainer
Bug in password authentication
Actually its not a bug, its "by design" behaviour.
"Connection from 181.2.201.81 .. Accepted" means than TCP connection is accepted because incoming address in the list of acceptable addresses.
"Cannot read data" (I assume this message displayed by HostMonitor or RMA Manager) means HostMonitor did not receive ANY responce from RMA.
When RMA receives wrong password, it does not send any respond. In this case intruder don't know what is wrong (wrong password, wrong packet, invalid incoming address or there no RMA installed).
Regards
Alex
"Connection from 181.2.201.81 .. Accepted" means than TCP connection is accepted because incoming address in the list of acceptable addresses.
"Cannot read data" (I assume this message displayed by HostMonitor or RMA Manager) means HostMonitor did not receive ANY responce from RMA.
When RMA receives wrong password, it does not send any respond. In this case intruder don't know what is wrong (wrong password, wrong packet, invalid incoming address or there no RMA installed).
Actually you may see intrusion attemts. Looks for "Invalid request packet received" message in RMA's log.2nd right now I don't see intrusion attemts
Regards
Alex