Community mailing list archives

community@mail.odoo.com

Re: Forum hackers

by
Stephen Mack
- 10/15/2014 14:14:38

On Wed, Oct 15, 2014 at 7:20 AM, Stephen Mack <smack815@gmail.com> wrote:

On Wed, Oct 15, 2014 at 7:17 AM, Stephen Mack <smack815@gmail.com> wrote:

On Tue, Oct 14, 2014 at 6:26 PM, Stephen Mack <smack815@gmail.com> wrote:
The hackers posts were simply deleted but his account was not closed so they are back at it.


On Tue, Oct 14, 2014 at 9:42 AM, Stephen Mack <smack815@gmail.com> wrote:
Well the same security flaws will be used in our forums as well.

On Tue, Oct 14, 2014 at 9:27 AM, Parthiv Patel <parthivgls@gmail.com> wrote:
Seems like forum is being flooded with this kind of activity. Odoo need to appoint some one to moderate posting.

On Tue, Oct 14, 2014 at 5:38 PM, Stephen Mack <smack815@gmail.com> wrote:

On Tue, Oct 14, 2014 at 8:59 AM, Stephen Mack <smack815@gmail.com> wrote:

On Mon, Oct 13, 2014 at 6:02 PM, Nhomar Hernández <nhomar@gmail.com> wrote:

2014-10-13 16:12 GMT-04:30 Stephen Mack <smack815@gmail.com>:

Hi odoo,

It's really getting boring deleting all the hackers who are spamming the forum.  Maybe some tools might be needed to help combat this.  


Warm regards,

I asked since the begining that authentication method for Odoo must have:

- token creation for double validation.
- some kind of Captcha.
- spam filter with blacklist.

They said it is not necesary due to the fact of... ( I don't remember ) but the first thing people does with the power is hack everything.

We even need to be able to authenticate pure jsonrpc (with cookies) in order to ensure block xmlrpc interface and user/password autentication for only a group.

Several things needs to be improved 1 by One I hope it is planned for V9.0

Regards.
--
--------------------
Saludos Cordiales
 
--
Nhomar Hernandez
 

_______________________________________________
Mailing-List: https://www.odoo.com/groups/community-59
Post to: mailto:community@mail.odoo.com
Unsubscribe: https://www.odoo.com/groups?unsubscribe



_______________________________________________
Mailing-List: https://www.odoo.com/groups/community-59
Post to: mailto:community@mail.odoo.com
Unsubscribe: https://www.odoo.com/groups?unsubscribe




--
Thanks & Regards,
Parthiv Patel

_______________________________________________
Mailing-List: https://www.odoo.com/groups/community-59
Post to: mailto:community@mail.odoo.com
Unsubscribe: https://www.odoo.com/groups?unsubscribe