While helping out a fellow resident recently, we noticed that the Robson
Ranch HOA web site stores remembered passwords as a cookie without first
encrypting them. This is a security risk because there are some nasty folks
out there that like to steal your cookies and they would then have your
login password.
This means that some outside agency could then access all the personal
information of our residents and even post messages using your name to
the HOA web site.
This storing of your password in a cookie only occurs if you check the
"Remember Login Info?" box when you sign onto the site.
If you've already stored the password cookie on your system, you can remove
it in one of the following ways.
For Internet Explorer users:
- Click on the "Tools" menu button at the top of the window and choose "Internet Options...".
- Click on the "Delete Cookies..." button under the General tab.
- Click on the OK button to confirm the deletion.
- Click on the OK button to close the Internet Options window.
For Mozilla or Netscape users:
- Click on the "Tools" menu button at the top of the window and select "Cookie Manager" and then "Manage Stored Cookies".
- Scroll down the popup window until you see the site entries for "www.robsonranchhoa.org" and click on the entry for the Cookie named "pw".
- Click on the "Remove Cookie" button at the bottom of the window to discard the information.
- Click on the "Close" button when you're done with the Cookie Manager window
11/18/2003
If you have any questions regarding this tip, send us a message here.
|
|
|