Jetpack VIOLATES basic Internet security rules!!!

  • Resolved Richard B.

    (@richcb7)


    5 years, 10 months ago

    I work as a website developer and was in the process of installing Jetpack for this customer. I was getting ready to set up the account when Jetpack ignored it and used the first account it could find.

    Let’s say was working on domain_A.com installing Jetpack

    The other day I was working on domain_B.com a few days ago.

    As Jetpack was doing its think installing on domain_A.com I reached over for pen to write down a note. When I looked back I saw Jetpack logging into the domain_A.com Jetpack application using the credentials from domain_B.com. There was no prompt warning asking me if the credentials were correct, no prompt for username/password. What I saw was Jetpack saying…

    “logging in as domain_B.com”

    I never gave Jetpack permission to do this!!!
    Just because there was a Jetpack account login somewhere in system memory, Jetpack decided on its own to use it, without permission.

    THIS SHOULD HAVE NEVER HAPPENED!!!

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thread Starter Richard B.

    (@richcb7)

    5 years, 10 months ago

    Oh! And just to make matters worse. When I log out of Jetpack, using the wrong domain, it DOES NOT prompt me or give me the option to create a new account. It returns an error that something went wrong and gets stuck in a look or tells me to contact support. That is what I am doing!!

    Plugin Support lizkarkoski

    (@lizkarkoski)

    5 years, 10 months ago

    Hi –

    Please let us know which domains you’re working on so we can have a closer look at things. If you’d like to share them privately use https://jetpack.com/contact-support/?rel=support

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Jetpack VIOLATES basic Internet security rules!!!’ is closed to new replies.