Zeitpunkt Nutzer Delta Tröts TNR Titel Version maxTL Do 04.07.2024 00:00:59 1.120 0 200.087 178,6 gruene.social 4.2.9 500 Mi 03.07.2024 00:02:05 1.120 +1 199.907 178,5 gruene.social 4.2.9 500 Di 02.07.2024 00:01:45 1.119 0 199.688 178,5 gruene.social 4.2.9 500 Mo 01.07.2024 00:00:19 1.119 0 199.498 178,3 gruene.social 4.2.9 500 So 30.06.2024 00:01:08 1.119 0 199.298 178,1 gruene.social 4.2.9 500 Sa 29.06.2024 00:01:18 1.119 0 199.121 177,9 gruene.social 4.2.9 500 Fr 28.06.2024 00:01:13 1.119 +1 198.868 177,7 gruene.social 4.2.9 500 Do 27.06.2024 00:01:14 1.118 +1 198.609 177,6 gruene.social 4.2.9 500 Mi 26.06.2024 00:01:07 1.117 0 198.389 177,6 gruene.social 4.2.9 500 Di 25.06.2024 00:00:06 1.117 0 198.174 177,4 gruene.social 4.2.9 500
Konstantin Weddige (@weddige) · 10/2022 · Tröts: 2.683 · Folger: 360
Do 04.07.2024 15:27
Step 2: Change my password
Changing one's password is a critical functionality of any web application. If an attacker gets temporary control of your session, they can use it to take over the account.
This is why applications usually ask for the old password as well as the new one. This way, the attacker not only needs to control the session (which can be archived through cross-site scripting, for example), but also needs to know the password. But Roll20 doesn't do that.
3/5 🧵
Change password dialogue with two input fields: 1. New Password 2. New Password (Again)
[Öffentlich] Antw.: 0 Wtrl.: 0 Fav.: 0 · via Web