[Vtigercrm-commits] [vtiger development] #2461: cron job security risk
vtiger development
vtiger-tickets at trac.vtiger.com
Thu Mar 5 14:20:52 EST 2009
#2461: cron job security risk
----------------------------+-----------------------------------------------
Reporter: nithyachandar | Owner: developer
Type: patch | Status: closed
Priority: major | Milestone: 5.1.0
Component: vtigercrm | Version: 5.0.0
Resolution: fixed | Keywords:
----------------------------+-----------------------------------------------
Changes (by prasad):
* status: new => closed
* resolution: => fixed
Comment:
We are following the approach from 5.1.0:
1. Cron Script will invoke the php script (.service) using php cli
(command line client) instead of URL access
2. During the invocation app_key needs to passed on the .service script
for further validation.
app_key value is unique for each installation and harder to guess.
Regards,
Prasad
vtiger Team
--
Ticket URL: <http://trac.vtiger.com/cgi-bin/trac.cgi/ticket/2461#comment:3>
vtiger development <http://trac.vtiger.com/>
vtigerCRM
More information about the vtigercrm-commits
mailing list