Cookies problem

Madhava_Challa Madhava_Challa at onsite.satyam.com
Thu Nov 20 13:10:31 UTC 2003 

Yep, We run into this problem everyday within our intra-net... We do have
external users using our Bugzilla installation, but never found things
criss-crossing with outside users..

Any ideas will be greatly appreciated..

Thanks!

Madhava Challa, PMP
Director (Delivery),
Satyam Computer Services

-----Original Message-----
From: developers-owner at bugzilla.org
[mailto:developers-owner at bugzilla.org]On Behalf Of Vijayan.R.A.Reddy
Sent: Thursday, November 20, 2003 6:26 PM
To: developers at bugzilla.org
Subject: Cookies problem


Hello All,

We have a serious problem our customers are facing with our bugzilla
installations.

* Bugzilla is installed in a local intranet site
* It is exposed to customers through an external IP address
* External IP address is blocked for internal employees and external
	customers can not see our intranet bugzilla address
  (Though both are seeing the same single instance).

Now, when a customer files a bug, the bug is filed as another user.
Suddenly, this user sees "Logout <SomeOneelse>'s id" on his footer bar,
and some of the products are hidden for him as <SomeOneelse> is not
authorised to see them.

Clearing cookies/deleting offline contents does NOT help (We suspect
they are coming through proxy servers).

An analysis of "logincookies" table shows that many users are coming In
through only 3 IP addresses, and as they all have one machine each (no
sharing), obviously the addresses are that of proxy servers. In cases,
the same IP is shared between two users.

With this context, how does one users cookie goes to another ? And we
have offered a temporary solution by deleting the logincookies rows for
those userids facing the problem.

Curiously, this issue is not found at-all inside our intranet, where
there are 300+ users have used it for a longtime and found it reliable.

Can someone give us the lead where we should look ? We have Perl
programmers on-board and we can fix it, but where ?

Thanks,
Vijayan.

-
To view or change your list settings, click here:
<http://bugzilla.org/cgi-bin/mj_wwwusr?user=Madhava_Challa@onsite.satyam.com
>
************************************************************************** 
This email (including any attachments) is intended for the sole use of the
intended recipient/s and may contain material that is CONFIDENTIAL AND
PRIVATE COMPANY INFORMATION. Any review or reliance by others or copying or
distribution or forwarding of any or all of the contents in this message is
STRICTLY PROHIBITED. If you are not the intended recipient, please contact
the sender by email and delete all copies; your cooperation in this regard
is appreciated.
**************************************************************************

More information about the developers mailing list