MantisBT - AChecker
View Issue Details
0003927ACheckerAChecker web sitepublic2009-08-31 13:362011-01-25 13:17
greg 
cindy 
normalminoralways
closedfixed 
 
1.0 
0003927: Remote Account Creation
Looking through the list of user on the public AChecker, there are many close to duplicate users account, all with a .cn ending. Need to prevent remote account creation.
No tags attached.
Issue History
2009-08-31 13:36gregNew Issue
2009-08-31 13:37gregStatusnew => assigned
2009-08-31 13:37gregAssigned To => cindy
2009-09-01 05:06cindyStatusassigned => resolved
2009-09-01 05:06cindyFixed in Version => 1.0
2009-09-01 05:06cindyResolutionopen => fixed
2009-09-01 05:06cindyNote Added: 0003763
2011-01-25 13:17gregNote Added: 0004991
2011-01-25 13:17gregStatusresolved => closed

Notes
(0003763)
cindy   
2009-09-01 05:06   
SVN revision: 272

Affected scripts:
include/constants.inc.php
register.php

Solution:
1. turn on AC_EMAIL_CONFIRMATION in include/constants.inc.php so that all the registration needs email confirmation click to finalize;
2. check HTTP_REFERER when creating registration record in register.php, to disable the remote registration.
(0004991)
greg   
2011-01-25 13:17   
closed for AChecker 1.1