git-svn-id: http://webgoat.googlecode.com/svn/trunk@14 4033779f-a91e-0410-96ef-6bf7bf53c507

2006-09-30 13:40:10 +00:00
parent 703e96efa0
commit 0465a6d6aa
155 changed files with 4408 additions and 0 deletions
--- a/webgoat/main/project/JavaSource/WebContent/lesson_plans/FailOpenAuthentication.html
+++ b/webgoat/main/project/JavaSource/WebContent/lesson_plans/FailOpenAuthentication.html
@ -0,0 +1,10 @@
+<div align="Center"> 
+<p><b>Lesson Plan Title:</b> How to Bypass Fail Open Authentication </p>
+ </div>
+ 
+<p><b>Concept / Topic To Teach:</b> </p>
+<!-- Start Instructions -->
+ This lesson presents the basics for understanding the "fail open" condition regarding authentication.   The security term, &#8220;fail open&#8221; describes a behavior of a verification mechanism.   This is when an error (i.e. unexpected exception) occurs during a verification method causing that method to evaluate to true. This is especially dangerous during login.  <br>
+ <!-- Stop Instructions -->
+<p><b>General Goal(s):</b> </p>
+ The user should be able to bypass the authentication check.