Skip to content

Fix session fixation#1

Open
ken1flan wants to merge 1 commit intomasterfrom
Fix_session_fixation
Open

Fix session fixation#1
ken1flan wants to merge 1 commit intomasterfrom
Fix_session_fixation

Conversation

@ken1flan
Copy link
Owner

@ken1flan ken1flan commented Jun 20, 2017

セッション固定化攻撃をされていても、
セッションIDを盗まれてしまっていても、
ログイン時にセッションを一度リセットすることで、
アカウントの不正な乗っ取りを防ぐことができるようになります。

@ken1flan ken1flan force-pushed the Fix_session_fixation branch from 11752b7 to 00afcca Compare May 2, 2018 10:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ken1flan

Comments