Re: [Wikitech-l] CentralAuth shared session updates

14 Apr 2008


      -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Ok, quick update, I've done a basic assessment of the additional
security impact of global session cookies and some mitigration strategies:
http://www.mediawiki.org/wiki/Global_session_threat_assessment
- -- brion vibber (brion @ wikimedia.org)
...PGP SIGNATURE...
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkgD438ACgkQwRnhpk1wk47oUACghElFHwRpQptz6j+rBe9GqW2N
TEoAoKJaE304uPI2NX1sQp0C2khOf0R8
=cBb+
-----END PGP SIGNATURE-----

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

Re: [Wikitech-l] CentralAuth shared session updates