<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /></head><body style='font-size: 10pt; font-family: Verdana,Geneva,sans-serif'>
<p><span>You, as a community responsible for a key business system, cannot ignore security issues in such a way. Mechanisms such as sessions, password encryptions etc. should be considered business-wise as well as technical-wise. I recommend reading this </span><a href="https://www.owasp.org/images/6/67/OWASPApplicationSecurityVerificationStandard3.0.pdf" target="_blank" rel="noreferrer">https://www.owasp.org/images/6/67/OWASPApplicationSecurityVerificationStandard3.0.pdf</a><span> It explains why Vtiger is only a toy in large companies, it isn't a professional system that might be considered to be used. If you deploy the mechanisms described in OWASP, you will solve all problems, including these with user sessions.</span></p>
<div>---<br />
<div>Z poważaniem / Regards</div>
<div> </div>
<div><strong>Błażej Pabiszczak</strong></div>
<div><em>Chief Executive Officer</em></div>
<div>M: +48.884999123<br />E: <a title="Mail do Błażej Pabiszczak" href="mailto:b.pabiszczak@yetiforce.com">b.pabiszczak@yetiforce.com</a></div>
<hr />
<p><span>YetiForce 3.0 LTS has arrived! </span><a href="https://gitdeveloper.yetiforce.com/" rel="noreferrer">Test</a><span> the latest, most innovative open source system in the world, and </span><a href="https://github.com/YetiForceCompany/YetiForceCRM" rel="noreferrer">join</a><span> our community.</span></p>
</div>
<p> </p>
<p>W dniu 2016-04-25 07:55, Preexo napisał(a):</p>
<blockquote type="cite" style="padding: 0 0.4em; border-left: #1010ff 2px solid; margin: 0"><!-- html ignored --><!-- head ignored --><!-- meta ignored -->
<div class="pre" style="margin: 0; padding: 0; font-family: monospace">Why not, you could even instead of deleting them all go through them with a<br /> custom workflow and only delete the ones which belong to each of the users?<br /><br /> VTE wrote
<blockquote type="cite" style="padding: 0 0.4em; border-left: #1010ff 2px solid; margin: 0">Not a perfect solution, but does the trick:<br /><br />  rm -f /var/lib/php5/sess_*</blockquote>
<br /><br /><br /><br /><br /> --<br /> View this message in context: <a href="http://vtiger-crm.2324883.n4.nabble.com/Vtigercrm-developers-vtiger-6-4-to-find-active-sessions-of-a-user-tp18864p18869.html">http://vtiger-crm.2324883.n4.nabble.com/Vtigercrm-developers-vtiger-6-4-to-find-active-sessions-of-a-user-tp18864p18869.html</a><br /> Sent from the vtigercrm-developers mailing list archive at Nabble.com.<br /> _______________________________________________<br /><a href="http://www.vtiger.com/">http://www.vtiger.com/</a></div>
</blockquote>
</body></html>