Feed Sign in with OpenID OpenID

Simon Willison’s Weblog

1 item tagged “sessionfixation”

Rails 1.2.4: Maintenance release. “Session fixation attacks are mitigated by removing support for URL-based sessions”—I’ve always hated URL-based sessions; I’d be interested to hear if their removal from Rails causes legitimate problems for anyone. 3 5th October 2007, 11:42 pm

Related: security, rails, sessions

sessionfixation on del.icio.us, Flickr, Technorati

Feed Feed for this tag

Search this site for "sessionfixation"

A django site