Just tested and found out that an unlimited number of peopel can log inot a site using the same user name and password. This needs to be fixed to check to see if the user is already logged in and either deny the the new connection from a different location, or log out the existing user.
Multiple logins with same user name
 |
and what's wrong with multiple logins it's not like you are going to post your login name & password for others to use it |
I'm thinking of account thieves and others who are out to do nafarious things. Plus it allows for easy spam posting and hackers to get info. |
Ok, I have to agree with prolaznik here. I just tried to "create" a new account using some of the same info (username and email address) and got errors on both of them. So I can say that you cannot create an account as another member that already exist. In order to have, what you called, "Account Thieves" they have to get your login information to gain access. With that being said, ANY site you go to can be compromised. You should make sure that you protect your login information to reduce the risk of having it compromised, such as complex passwords and/or changing your password often. There are many people who may use the abilities for multiple logins/locations for specific reason. This should not be denied. Nothing to see here |
Below is the legacy version of the Boonex site, maintained for Dolphin.Pro 7.x support.
The new Dolphin solution is powered by UNA Community Management System.
The new Dolphin solution is powered by UNA Community Management System.