Disable Back Button
I entered a support case so not wanting to duplicate support requests but I heard from a couple reps with ManageEngine and want to make sure I am on the right release level. I am at build 4431.
If I reset my password through the forgot password link I can use the back button to pass back through what I have entered so anyone who resets their password and leaves the window open and does not close it (there is no prompt to do so), could leave the system open for compromise for that users account.
In Firefox the form fields are at least cleared so that you cannot tell who it is your are resetting for but in IE 8 no such luck. Just wondering if anyone else has addressed this. Support is great and did call me and I think said that it was fixed in the latest release but I am at the latest, I think.
Thanks - db
If I reset my password through the forgot password link I can use the back button to pass back through what I have entered so anyone who resets their password and leaves the window open and does not close it (there is no prompt to do so), could leave the system open for compromise for that users account.
In Firefox the form fields are at least cleared so that you cannot tell who it is your are resetting for but in IE 8 no such luck. Just wondering if anyone else has addressed this. Support is great and did call me and I think said that it was fixed in the latest release but I am at the latest, I think.
Thanks - db