<br><font size=2 face="sans-serif">ALOT as this was a 2000 user migration.
They have been Using Unity since 2001 so the 15 years of TDM legacy
means nothing to me......</font>
<br>
<br><font size=2 face="sans-serif">Carlos</font>
<br>
<br>
<br>
<table width=100%>
<tr valign=top>
<td width=40%><font size=1 face="sans-serif"><b>"Craig Staffin"
<craig@staffin.org></b> </font>
<br><font size=1 face="sans-serif">Sent by: cisco-voip-bounces@puck.nether.net</font>
<p><font size=1 face="sans-serif">04/05/2007 11:50 AM</font>
<td width=59%>
<table width=100%>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">To</font></div>
<td><font size=1 face="sans-serif">"Lelio Fulgenzi" <lelio@uoguelph.ca></font>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">cc</font></div>
<td><font size=1 face="sans-serif">cisco-voip@puck.nether.net</font>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">Subject</font></div>
<td><font size=1 face="sans-serif">Re: [cisco-voip] Unity 4.2 versus 4.05
sign on</font></table>
<br>
<table>
<tr valign=top>
<td>
<td></table>
<br></table>
<br>
<br>
<br><font size=3>just curious but how many people do you have typing in
the wrong passwords?<br>
<br>
on almost all of the legacy TDM systems this has been normal for the past
15 years.<br>
<br>
Craig<br>
</font>
<br><font size=3>On 4/5/07, <b>Lelio Fulgenzi</b> <</font><a href=mailto:lelio@uoguelph.ca><font size=3 color=blue><u>lelio@uoguelph.ca</u></font></a><font size=3>>
wrote:</font>
<br><font size=2>Can the Cisco people on this list please let the power(s)
that be know that arbitrarily calling something a 'security hole' after
2 major versions in and more than 5 years into deployment for some places
and NOT giving us the opportunity to keep using the same behaviour is,
well, expected, but still dissappointing.</font>
<br><font size=3> </font>
<br><font size=2>This is going to cause nothing but headaches from our
end.</font>
<br><font size=3> </font>
<br><font size=2>I thought Cisco was supposed to be "customer focused"
?</font>
<br><font size=3> </font>
<br><font size=3> </font>
<br><font size=2>--------------------------------------------------------------------------------<br>
Lelio Fulgenzi, B.A.<br>
Senior Analyst (CCS) * University of Guelph * Guelph, Ontario N1G 2W1<br>
(519) 824-4120 x56354 (519) 767-1060 FAX (JNHN)<br>
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
<br>
...there's no such thing as a bad timbit...</font>
<br><font size=2 face="Arial">----- Original Message ----- </font>
<br><font size=2 face="Arial"><b>From:</b> </font><a href=mailto:CarlosOrtiz@bayviewfinancial.com target=_blank><font size=2 color=blue face="Arial"><u>CarlosOrtiz@bayviewfinancial.com</u></font></a><font size=2 face="Arial">
</font>
<br><font size=2 face="Arial"><b>To:</b> </font><a href="mailto:cisco-voip@puck.nether.net" target=_blank><font size=2 color=blue face="Arial"><u>cisco-voip@puck.nether.net</u></font></a><font size=2 face="Arial">
</font>
<br><font size=2 face="Arial"><b>Sent:</b> Thursday, April 05, 2007 10:25
AM</font>
<br><font size=2 face="Arial"><b>Subject:</b> Re: [cisco-voip] Unity 4.2
versus 4.05 sign on</font>
<br>
<br><font size=2 face="sans-serif"><br>
I got an answer from one of my partner SE's. FYI for everyone.</font><font size=3>
</font>
<p><font size=2><B>Symptom:</B></font><font size=3> </font>
<p><font size=2>After calling Unity from a primary or alternate extension
and entering an incorrect password, Unity reprompts the subscriber to enter
their ID.</font><font size=3> </font>
<p><font size=2><B>Conditions:</B></font><font size=3> </font>
<p><font size=2>Seen with Cisco Unity 4.2(1) when a subscriber calls Unity
from a known extension (primary or alternate), and enters an incorrect
password. In previous releases, if an incorrect password was entered, Unity
would reprompt for the password. With sign-in enhancements in 4.2(1), Unity
now prompts for the ID if an invalid password is received.</font><font size=3>
</font>
<p><font size=2><B>Workaround:</B></font><font size=3> </font>
<p><font size=2>None.</font><font size=3> </font>
<p><font size=2>The Unity DE's have reported that this design modification
was to fix what they believed to be a security hole.</font><font size=3>
</font><font size=2>This will be the expected behavior for Unity 4.2.1
and forward.</font><font size=3> </font><font size=2>Currently there is
no plan by the Unity Business Unit to change this behavior or give customers
access to change the behavior.</font><font size=3> </font>
<p><font size=3><br>
<br>
</font>
<table width=100%>
<tr valign=top>
<td width=53%><font size=1 face="sans-serif"><b>Carlos Ortiz/MIA/BAY/BFTG</b>
</font>
<p><font size=1 face="sans-serif">04/05/2007 09:21 AM</font><font size=3>
</font>
<td width=46%>
<br>
<table width=100%>
<tr valign=top>
<td width=27%>
<div align=right><font size=1 face="sans-serif">To</font></div>
<td width=72%><font size=1 face="sans-serif">Cisco-Voip List</font><font size=3>
</font>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">cc</font></div>
<td>
<tr valign=top>
<td>
<div align=right><font size=1 face="sans-serif">Subject</font></div>
<td><font size=1 face="sans-serif">Unity 4.2 versus 4.05</font></table>
<br>
<br>
<table width=100%>
<tr valign=top>
<td width=50%>
<td width=50%></table>
<br></table>
<br><font size=3><br>
</font><font size=2 face="sans-serif"><br>
In Unity 4.05 when a user enters the wrong password they are prompted to
re-enter their password. In 4.2 they are prompted to enter their
ID(extension) AND then their password. Is there any way to
change it to behave like 4.05 or is this just a change we have to live
with.</font><font size=3> <br>
</font><font size=2 face="sans-serif"><br>
Carlos</font><font size=3> </font>
<p>
<hr>
<p><font size=3>_______________________________________________<br>
cisco-voip mailing list</font><font size=3 color=blue><u><br>
</u></font><a href="mailto:cisco-voip@puck.nether.net" target=_blank><font size=3 color=blue><u>cisco-voip@puck.nether.net</u></font></a><font size=3 color=blue><u><br>
</u></font><a href="https://puck.nether.net/mailman/listinfo/cisco-voip" target=_blank><font size=3 color=blue><u>https://puck.nether.net/mailman/listinfo/cisco-voip</u></font></a>
<br><font size=3><br>
_______________________________________________<br>
cisco-voip mailing list</font><font size=3 color=blue><u><br>
</u></font><a href="mailto:cisco-voip@puck.nether.net"><font size=3 color=blue><u>cisco-voip@puck.nether.net</u></font></a><font size=3 color=blue><u><br>
</u></font><a href="https://puck.nether.net/mailman/listinfo/cisco-voip" target=_blank><font size=3 color=blue><u>https://puck.nether.net/mailman/listinfo/cisco-voip</u></font></a><font size=3><br>
</font>
<br><font size=3><br>
<br>
<br>
-- <br>
Craig Staffin</font><font size=3 color=blue><u><br>
</u></font><a href=mailto:Craig@staffin.org><font size=3 color=blue><u>Craig@staffin.org</u></font></a><font size=3><br>
(H) 262-437-7313<br>
(C) 262-613-6003 </font><font size=2><tt>_______________________________________________<br>
cisco-voip mailing list<br>
cisco-voip@puck.nether.net<br>
https://puck.nether.net/mailman/listinfo/cisco-voip<br>
</tt></font>
<br>