The Rugby World Cup has hit a security snag just over a week before the eagerly awaited tournament kicks off in New Zealand. Media partners logging into the dedicated media centre system were confronted with the profiles of other journalists instead. Sysadmins are trying to get to the bottom of the problem, in the meantime …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Thursday 1st September 2011 12:58 GMT Anonymous Coward

Caching

Clearly the sysadmins know that. Are the developers aware of session management?

2 0
Thursday 1st September 2011 13:55 GMT Seanie Ryan

seriously??

reload page until your details come up???

In the meantime pretend you didnt see all the other peoples data. and dont copy and paste it.

tell them to stop using WHERE 1 LIMIT RAND(),1 in their mysql query !! LOL

0 0
Thursday 1st September 2011 14:36 GMT Rovindi

Excellent

Rugger buggers' buggy buggerup - you guys really know how to knock ´em out!

Good stuff

0 0
Thursday 1st September 2011 15:40 GMT Blue eyed boy

Really from RWC 2011 Media Centre?

or is it from e.g. an El Reg commentard who just happened to get that profile up when logging in?

0 0
Thursday 1st September 2011 17:24 GMT Promotor Fidei

Sounds familiar

I've had that at a company where I had worked for a week for evaluation purposes.

They had a shop-in-shop system and some shop administrators would get logged in into the wrong shop backend. Turned out the login function just compares user and password hash, not the actual shop id. So the first match was used, which was not always the correct one. Especially with the shops the company administrated since those all had the same user/pass.

They never offered me a job so it hasn't been fixed and there is no one at the company even capable of understanding the problem, never mind fixing it. I left a note for a hot-fix (never ever use the same username for two shops) but I doubt anyone there can even understand that.

1 0
Friday 2nd September 2011 12:03 GMT Jefe Mixtli

Let's all Thread safely people

Someone's session manager isn't thread safe!

0 0

This topic is closed for new posts.

Topics

Special Features

Vendor Voice

Resources

User topics

Article topics

User topics

Article topics

Rugby World Cup reporters swap identities in login glitch

COMMENTS

Caching

seriously??

Excellent

Really from RWC 2011 Media Centre?

Sounds familiar

Let's all Thread safely people

Other stories you might like

How to improve Chinese TV? Better censorship, says top tellie-maker

Hollywood studios agree AI-generated content should not reduce humans' pay or credit

Long-lost 1977 Star Wars X-Wing prop discovered – lock s-foils in bid position

LG's $1,000 TV-in-a-briefcase is unlikely to travel much further than the garden

Producers allegedly sought rights to replicate extras using AI, forever, for just $200

Netflix offers up to $900,000 for AI product manager while actors strike for protection

LG to offer subscriptions for appliances and televisions

Dish: Someone snatched our data, if you're wondering why our IT systems went down

LG makes a TV roughly the size of a queen-sized bed

Amazon has repackaged surveillance capitalism as reality TV

Star Trek's Nichelle Nichols closes hailing frequencies

Samsung accused of cheating on hardware benchmarks ... again

About Us

Our Websites

Your Privacy