Features / Usability

Features / Usability

Admin Bypass flaw attack attempt

posts: 126825 United Kingdom
RandyH wrote:
I am at a release that fixes the flaw so it presumably will not allow them to enter. But I cannot keep the admin account active long enough to upgrade to the absolute latest release!

Hi RandyH

Sounds grim! I presume and hope you have made another account with an unpredictable username and strong password and added that to the Admins group, and once you have done that you can use the validate button on the admin user page to unlock the default admin account if necessary... but if you're under such continuous attack (and have an alternative admin login) you could also just leave it locked which might save time?

Hope that helps.