|
Post by propman on Jun 12, 2019 10:51:33 GMT
If I sign into my account , go into one of the funds and then log out, my details are retained. So if I go to log in (either place) then it takes me straight in without security. In addition, if I have done more before signing out, while logging out and in takes me to the normal sign on screen, when i sign into a different users account, it comes up with the name of the previous user although the details of the new one.
I am no IT expert (think "dinosaur"), but this suggests to me that my account is not secure.
Any thoughts?
|
|
|
Post by erniec on Jun 12, 2019 11:15:14 GMT
I’ve seen this on my iPad but it doesn’t occur on my Android mobile. On iPad, if you go to Dashboard before logging out, this error doesn’t happen. (There’s a different sub-menu.)
|
|
aju
Member of DD Central
Posts: 3,480
Likes: 917
|
Post by aju on Jun 12, 2019 23:19:52 GMT
I reported this to Zopa some months back and they just fobbed it off as there is a timer on the account of 10 mins I think it was at the time. I argues that it was not acceptable to allow my account to remain open when in fact I thought it was logged out but they said that it was secure!.
The thing is once i knew what was was happening and was also aware of its effect they argued that there was no way someone could walk up to my Pc and get back into my account and make changes to my account without further requests for password and other info I would know but the intruder would not. Not sure that is correct but that was it!.
In the end it was clear they did not know what they were doing with their cookie tracking across the relevant screens and therefore were never going to fix it.
In my case it was important because I was, and still do use, my own traversing routes to the screens as it gets me to what I want quicker, however due to their flawed method of tracking where a user is it is harder for them to track through correctly with my approach. Quite honestly I do the same thing on RS and it still manages to logout properly. Zopa does not, and I know they have not fixed it in months and so always check fully i am logged out when i think i am.
My explanation has got a bit long winded and Zopa doesn't give a dam and probably does not have the nounce to get a better method or at the very least fix it.
The other curious thing is that if you forget to logout it will log u out after 10 mins i think. When you next login the cookies used in tracking will signal to zopa you are in a specific screen and put you straight back there as well. Once that happens it will not log out correctly next time either - That's what used to happen any way. If you tangent out to faq and then come back by using history or back arrows the same will occur - usually.
|
|