[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Savannah-hackers] Re: savannah.gnu.org Verification
From: |
Marcus Brinkmann |
Subject: |
[Savannah-hackers] Re: savannah.gnu.org Verification |
Date: |
Wed, 25 Aug 2004 15:59:36 +0200 |
User-agent: |
Wanderlust/2.10.1 (Watching The Wheels) SEMI/1.14.6 (Maruoka) FLIM/1.14.6 (Marutamachi) APEL/10.6 Emacs/21.3 (i386-pc-linux-gnu) MULE/5.0 (SAKAKI) |
Hi guys,
I didn't request this password change, but I changed my password
anyway. I don't think this poses any problem for now.
At any rate, please note that the advice in the email is not good advice:
> If you did not request this verification, please visit this URL to report
> about it to address@hidden
If you do as advised, and visit the URL, the only choice you get is to
change your password. There is no choice to report about the incident.
Well, changing the password is not the worst option, and immediately
invalidates the hash.
Thanks,
Marcus
At Wed, 25 Aug 2004 09:49:30 -0400,
address@hidden wrote:
>
> Someone (presumably you) on the savannah.gnu.org site requested a password
> change through email verification.If this was not you, this could pose a
> security risk for the system.
>
> The request came from 141.52.160.8
> (IP: 141.52.160.8 port: 3085)nwith Mozilla/5.0 (compatible; Konqueror/3.2;
> Linux) (KHTML, like Gecko)
>
> If you requested this verification, visit the same URL
> to change your password:
>
> https://savannah.gnu.org//account/lostlogin.php?confirm_hash=1136e48c677ce478575aeffe0e8ee816
>
> If you did not request this verification, please visit this URL to report
> about it to address@hidden
>
> In any case make sure that you do not disclose this url to
> sombody else, e.g. do not mail this to a public mailinglist!
>
> -- the Savannah team.
>
>
> _______________________________________________
> Message sent via/by Savannah
> http://savannah.gnu.org/
>
>
>
>
- [Savannah-hackers] Re: savannah.gnu.org Verification,
Marcus Brinkmann <=