Last modified: 2013-10-12 00:32:48 UTC
Someone mass send password request to my email address via "Lost your password?" of OTRS login. Now have receive > 100 email. plese add captcha for OTRS!
*** Bug 21580 has been marked as a duplicate of this bug. ***
OTRS's bugzilla: http://bugs.otrs.org/
Wasn't it reported upstream?
OTRS's
Reported upstream as otrs bug #4631 http://bugs.otrs.org/show_bug.cgi?id=4631
Bug has still not been fixed in OTRS.
[Removing RESOLVED LATER as discussed in http://lists.wikimedia.org/pipermail/wikitech-l/2012-November/064240.html . Reopening and setting priority to "Lowest". For future reference, please use either RESOLVED WONTFIX (for issues that will not be fixed), or simply set lowest priority. Thanks a lot!]
I don't think Tim is actively working on this (instead we are waiting for upstream developers to fix it), hence I'm resetting the assignee. Still valid and unresolved in upstream (see "See Also:" field for URL).
Upstreamed as Idea#1335 on https://otrsteam.ideascale.com/a/dtd/Disallow-spamming-agents-by-Lost-password-feature/455056-10369