Windows Explorer bypasses router password Page 3

Author	All Replies
jack b Gone Fishing Premium,MVM join:2000-09-08 Cape Cod clubs: ·Comcast	reply to dolphins Re: This stinks Thanks to dolphins, for posting about this in the first place, and also to BandHeight, for posting the fix to an obscure and potentially sensitive issue. -- ~Help find a cure for Cancer~ ~Proud Member of Team Discovery ~
	to forum · permalink · · 2006-10-27 21:17:34 ·
dolphins Miami Dolphins Premium join:2001-08-22 Westville, NJ ·Comcast	said by jack b : Thanks to dolphins, for posting about this in the first place, and also to BandHeight, for posting the fix to an obscure and potentially sensitive issue. I say cheers to that and yes, A round of applause for BandHeight for having the ability to see what others did not. I know first hand how hard it is to diagnose someone else's computer problems without having physical access. I went through my folder options a dozen times but saw nothing that would solve this problem as I'm sure most of the people trying to solve this did. I consider this to be a another Microsoft flaw as I need to know the reasoning why this is unchecked by default? -- Prevent Malware
	to forum · permalink · · 2006-10-27 22:18:25 ·
swhx7 Premium join:2006-07-23 Elbonia ·RoadRunner Cable 1 edit	reply to dolphins Re: Windows Explorer bypasses router password I'm coming to this late, but just want to say that the problem did not occur on Windows 2000 SP4 with "separate process" unchecked, upnp disabled, and the options set to never save any data (passwords, form data, autocomplete). This agrees with dolphins' surmise that it's XP only. @dolphins and planet, untrusted LAN users can be a concern even if this is not exploitable from the WAN side. said by jbob : One of the things I discovered using FireFox with multiple tabs open is that once you log in to a site that requires a login name/password unless you completely close all the tabs and Firefox itself it will remember the login name and password for each site entered. Example: If I have Firefox open with two tabs, one on DSLR and one on Yahoo Mail, if I close the tab to DSLR and then open a new tab and go back to DSLR I will not be asked to login again. Same with Yahoo Email. As long as one instance of my browser remains open it will retain that info. When you login to DSLR for example, if you have the option set to not store passwords or other form data, Firefox obeys your setting and does not retain the login or password. The reason you stay logged in is that upon login you pick up a cookie which contains a token generated at your login, and that cookie gets checked at each subsequent page load. At least some routers use this method too. Mine for example is a Netgear and uses the cookie method. The OP's issue, and the same as encountered by others, is Windows retaining credentials and maybe also a non-cookie token. ------- If the login credentials or token are stored other than by a cookie, this indicates that the router uses a proprietary Windows login method rather than a web-standard method, correct? Also, the "separate process" setting is a workaround; it doesn't mean the behavior is not a bug. Windows' retaining the credentials even when told not to is a defect.
	to forum · permalink · · 2006-10-28 12:31:13 ·


Wednesday, 09-Dec 14:14:16	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF