I’'m now upgrading my Jive Messenger server to a new version and I noticed that when I start the server with the new version and I go to the web admin, the wizzard never ask me my password before completing the upgrade step. So anyone that go to that URL before me may fuck my configuration with random data. The wizzard should ask the admin password when a previous setup is detected.
I don’'t think this is very dangerous, but this may be a waste of time.
On another hand, this will be great if we don’'t have to redo the database configuration after each upgrade ;).
And thanks for this great Jabber server