Category: Zone BBS Suggestions and Feedback
Hi rdfreak,
Well, my isp decided to disconnect me last night, just as I was about to read a response to one of my posts. I logged back in immediately, and I was told I was loggedin on a different computer,or someone had hacked into my account. This happened twice, so after I got that the second time, I waited a few seconds, and everything was ok. Odd how it said I was already logged in on another computer, since this is the only one I've got.
wonderwoman
Ya. I'm going to redo the error checking on that one. I'm going to change it so it'll log out the first instance of you, instead of not letting you in.
ok thanks j, thats scarey when you get that thing saying or someone may've hacked in to your account. I figured they hadn't after I was successful logging in the 3rd time. Thanks,
wonderwoman
Woooha. That'd be freaky. Hope it all works out well, WW. Caitlin
I think so Caitlin, I think it was just giving the 2 most possible reasons why it wouldn't log me in. I think if someone had hacked into my zone account, it probably wouldn't have ever let me back in.
wonderwoman
not necessarily. If they logged out without changing your password, you'd still be able to log in. But how are they supposed to know?
oh my, hadn't thought of that. Well, I don't see how. I never give out any of my pass words. It's only happened last night, and one other time a long time ago. Oh well, if I see a topic under my user name and I have no idea how it got there, then I'll know.
wonderwoman
Well we could do some creative tracking to figure out if it really was you, like we did re: RD's warning thread.
well, this problem happened to me lots of time. i need to wait for another few mins instead of few seconds. ww, you are the lucky one. smiles.
J, is it possible for you to see if the browser was closed, doesn't the browser send some type of a "close" event. I do realize it's hard to keep track of the user status in that if the user goes to another page it does not directly fire of an event, but I would think if the browser was closed an event would be sent to the server side (however I am not sure of this). You could run a process or a daemon to look out for these events and then log out the user when this event is detected.
You could also probably check the ip of the user trying to log in as a second instance, granted though that if the user is on dial-up the ip should be a roaming one but I thought the isp only has a limited sets of ip's so you could find out at least if it is the same isp and then assume it's ok and it's the same user.
If you don't know this off-hand I can go find out for you and see how well you can determine these things using the clients ip address.
Cheers
-B
Ok j-squared, if you can do it, go ahead. I think it was probably just that I hadn't given it time to log me out, but but it's good to know nobody hacked in to my account. And snowflake, if it only happend tome twice, guess I am lucky. I'm so sorry that happens to you that often, it's annoying and a bit scarey I know. Nice to meet you by the way.
wonderwoman
That's so cool you can track stuff, J. It's good way to find, punish, etc., hackers. Lol. Caitlin
Currently we use the IP address of the client. This can break if an intermediate proxy is used or something similar. You can have javascript that calls another page if the browser window is closed, but this would immediately open another window and could be confusing. Active sessions time out after a while (10 minutes of inactivity, I think).
Yeah this makes sense ... I think. Caitlin
Actually, it's only 5. But if you have the window still open and then go to another page after 5 minutes, it'll log you in. That goes along with the idle time on the who's online page and in profiles near the bottom.
Oooh now that makes more sense to me. Lol. I get it now. Caitlin
Wonder woman you're not the only one this has happened to. It happens to me too many times and it frustrates the living hell out of me.
Hi Michelle,
I can sure understand that. It's scarey when it happens, but I guess you just have to remember to wait a minute to give it time to log you out.
wonderwoman
Ya. that one's near the top of the list of things to fix. There's two error messages that are now infamous on the site that scare the crap out of people, even though they aren't taht bad. that one and the the error after posting thing. So wanna get to those and fix em up.