This question is not language specific.
I want to send my username and password as soon I get logged off from the captive portal because many people are using an admin ID (infinite data benefits) in my college and I want to send the http POST packet asap.
So I want to run a piece of code which runs infinitely (as long as I am online) send the username and password and I have absolutely no clue of how to go about it, is there a batch file that I can run? or something else I haven't the slightest clue.
This is a simple python automation problem. Try this:
How I created a Python Bot to automatically log into a Captive Portal by Ritvik Khanna https://medium.com/p/how-i-created-a-python-bot-to-automatically-log-into-a-captive-portal-3d4ba04dee9f
Related
I have implemented the reset password link for my app (using exactly the same firebase code provided at https://firebase.google.com/docs/auth/web/manage-users). It works well when I tried it using a gmail account that I have registered previously on the app (I received the reset password link on gmail and able to change for a new password). However, when I tried it with other email domains (like professional work or school domains e.g #mycompany.com or #school.edu), it does not seem to receive the email (not in junk/spam too). It is very weird because I do receive the 'email verification' link (from firebase) using other domains when I registered using the app but not when I tried to reset the password? Any ideas on how to approach this problem?
As an FYI, currently in Jan 2023, Microsoft 365 business blocks these emails from ever reaching the target mailbox, even if you change the SMTP settings in firebase.
They still appear in your own SMTP sent section, they just never get delivered by MS
Open firebase console goto Authentication then click on Templates > Password Reset then copy given email address (it seems like, 'noreply#YOUR-PROJECT-NAME.firebaseapp.com') then open your Gmail account and paste that email id in search section the tap on 'view message > move to not spam'
This will surly help you
Thanks
Meet Patel
If the code is the same and you don't get an error message, it is extremely likely that the email gets blocked somewhere along to the way to the target mailbox. You'd have to reach out to the system administrator and see if they can find the message somewhere in their spam filters, and ask them to modify the configuration of those to no longer block these messages.
As ganey stated, the problem is that certain email filters such as MS 365 do not accept mails that contain links that are not in pair with the sender domain.
The solution is to add a customized action url that points to the same domain as your sender domain.
Then you need to redirect from that url to the url generated by firebase.
Note:
If you do this in react or another SPA, don't forget to append the query params.
Today I need to write a code which can send a automatic mail once in a day after the 80 days of the password changed. I have already checked the condition that password is 80 days old or not and as of now I have just putted the a message to change the password when the user login, but I also want to send him a mail also, so that the user can get the information even if he doesn't logged in the last 10 days before the password expires(because after 90 days the password will be expired).
I know how to send the mail, I know how to check the condition but I don't have any bit of idea that how to send the mail automatically and for this where should I write code so that the mail will be sent regardless the user logged in or not. I am working on the MVC 4 web application. Please help me with this!!
Thank you in Advance!!
You can use Quartz.NET to schedule a daily job. This means that once a day in a specific job you check for passwords that are older than 80 days and send the mails accordingly.
Here's a tutorial on how to do it.
I think you look for "scheduled tasks"
You can try looking here
Best way to run scheduled tasks
I'm building a Membership site using wordpress and Membership Plugin .
The site is still on my localhost. I did some trial sign ups and it worked perfectly well. But I noticed that, I can use even a fake email address such as xyz#gmail.com or something to sign up and create an account. So that's the problem. I don't know how this will work when I moved the site to my server.
But do you guys think this is a security hole ?
And what can I do for this as a solution ?
Here's what I suggest:
On the registration page, add a field where users need to enter a special code to complete registration and make the code as an image (or at least as something robots cannot process easy). This will prevent robots from constantly signing up to new accounts with bogus information.
Next, perform basic email validation to make sure the format is correct.
Next, strip the email address the user entered and verify the domain part is correct and if it is, have your server automatically send an email to the new account holder asking him/her to return to a special section of the site where he/she enters a special registration code assigned to him/her to complete registration.
Also, to save database space (I'm assuming registration info will be stored in one), ask users to complete registration within a limited time period or they will have to start over. If the time is up then relevant data from the database can be removed. I suggest setting the time period to at least one day.
If you are unable to do this, then you may need to find a better plugin that has the functionality I described.
And whatever you do, play with the website on localhost and make as few modifications on the live server as possible. This means make all changes at once on localhost if you can then upload everything at once to the live server.
I am thinking of using a QR code to login to a website. This way a user doesn't have to enter a user id/password.
users goes to a website.
the website need autorisation.
the website present a QR code.
the user scans the QR code with his/her phone.
Somehow the originating website gets confirmation that the QR code was scanned by a known phone.
Now the website knows the user and the user is logged in.
This is safe because the phone is known to the site.
If needed the user can protect the phone with a PIN code or other locking system.
Does anybody know if somebody has already build such a system?
Some code would be nice :-)
When logging in to a site, the web server sends the
PC browser a QR code that encodes a cryptographic challenge; the user
takes a picture of the QR code with his cell phone camera which re-
sults in a cryptographic response sent to the server; the web server then
logs the PC browser in.
Excerpt from: Secure, Consumer-Friendly Web Authentication
and Payments with a Phone
The have some real code too: https://github.com/Mobisocial/Snap2Pass
Because there are some challenges with sending data from the server to the waiting client, i.e. the page that showed the QR code we made www.qrpu.sh
This will just make some of the infrastructure easier, but the logic of the authentication is the same as in the answer from pods
It's a bit old discussion but I was looking for a solution to this kind of problem and I found this:
qrlogin
I am building an intranet site and i want to display the users email(not the complete email), but the subject, from, date and time.
However, the first step would be connecting to the exchange server using the NTLM credentials, which are the same, however, i dont want the user to have to type their password to connect to the email.
is this possible and how?
any resources/examples anything to help me get started thanks