A potential XSS vulnerability has been fixed with the latest Campsite release, which also improves session handling to avoid logged user session grabbing via CSRF attack.
on 07/30/2010 – Made popular on 07/30/2010
Sourcefabric, formerly known as Campware, has made its first software release since the restructuring and renaming of the organisation, which started over a decade ago as the digital media department of the Media Development Loan Fund. Sourcefabric is now one of the largest European open source projects for news and media.
Integ announced it has implemented its five star Campsite Entertainment Solution into more than 3,000 campsite rooms for several clients including the Karara Iron Ore Project in remote areas of Western Australia , with prospects of tripling this number in the next few months.
The difference between "active" and "online" is explained in the documentation:The following states are currently known: offline (user not logged in at all), lingering (user not logged in, but some user services running), online (user logged in, but not active, i.e. has no session in the foreground), active (user logged in, and has at least one active session, i.e.
Ubuntu 11.10, the latest stable release of the popular Linux distribution, sports two guest accounts, one in the login screen and the other accessible from an active user session. Both are tightly coupled to LightDM, the new display manager that made its debut in this latest release of Ubuntu. The guest session from the login [...]
How could I set default permissions for session files so that both apache-php-process and some-other-user's-php-process can rw them? The session is created by some-other-user's-php-process and after that apache-php-process should be able to read and write it.
Now the default permission for session files is 600. It should be 660 or 666. Where and how can I set this permission (eg.
^ There should be a dbus session for each user that is logged into your computer along with the one for root.The users session-bus is started at login, I belive by your login manager.If you already have another notification daemon running and it works you have a session bus for that user since all notifications are sent over dbus.You can check if you have a session-bus after you are logged in by c