Last modified: 2013-10-12 00:32:48 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T23579, the corresponding Phabricator task for complete and up-to-date bug report information.

Bug 21579 - OTRS password request abuse (implement CAPTCHA?)


Summary:	OTRS password request abuse (implement CAPTCHA?)

Status:	REOPENED

Product:	Wikimedia
Classification:	Unclassified
Component:	OTRS (Other open bugs)
Version:	unspecified
Hardware:	All All

Importance:	Lowest major (vote)
Target Milestone:	---
Assigned To:	Nobody - You can work on this!

URL:	https://ticket.wikimedia.org/otrs/ind...
Whiteboard:
Keywords:	upstream

Duplicates:	21580 (view as bug list)
Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2009-11-20 16:23 UTC by shi zhao
Modified:	2013-10-12 00:32 UTC (History)
CC List:	9 users (show)

See Also:	http://bugs.otrs.org/show_bug.cgi?id=4631
Web browser:	---
Mobile Platform:	---
Assignee Huggle Beta Tester:	---

Attachments
Put it in facebook and is my image photograph. (deleted) 2013-04-13 15:05 UTC, しかさ	Details
Show Obsolete (1) Add an attachment (proposed patch, testcase, etc.)

Description shi zhao 2009-11-20 16:23:53 UTC

Someone mass send password request to my email address via "Lost your password?" of OTRS login. Now have receive > 100 email. 

plese add captcha for OTRS!

Comment 1 str4nd 2009-11-20 16:27:14 UTC

*** Bug 21580 has been marked as a duplicate of this bug. ***

Comment 2 Liangent 2009-11-20 16:33:22 UTC

OTRS's bugzilla: http://bugs.otrs.org/

Comment 3 Platonides 2009-11-22 21:54:09 UTC

Wasn't it reported upstream?

Comment 4 hiroe_14 2009-12-07 20:54:34 UTC

OTRS's

Comment 5 Platonides 2009-12-07 22:43:07 UTC

Reported upstream as otrs bug #4631
http://bugs.otrs.org/show_bug.cgi?id=4631

Comment 6 Diederik van Liere 2011-11-29 23:06:06 UTC

Bug has still not been fixed in OTRS.

Comment 7 Andre Klapper 2012-12-12 15:14:17 UTC

[Removing RESOLVED LATER as discussed in
http://lists.wikimedia.org/pipermail/wikitech-l/2012-November/064240.html .
Reopening and setting priority to "Lowest".
For future reference, please use either RESOLVED WONTFIX (for issues that will
not be fixed), or simply set lowest priority. Thanks a lot!]

Comment 8 Andre Klapper 2013-02-21 16:17:35 UTC

I don't think Tim is actively working on this (instead we are waiting for upstream developers to fix it), hence I'm resetting the assignee.

Still valid and unresolved in upstream (see "See Also:" field for URL).

Comment 11 Andre Klapper 2013-10-12 00:32:48 UTC

Upstreamed as Idea#1335 on https://otrsteam.ideascale.com/a/dtd/Disallow-spamming-agents-by-Lost-password-feature/455056-10369

Note You need to log in before you can comment on or make changes to this bug.

Wikimedia Bugzilla is closed!

Search

Personal tools

Navigation

Links