A hash doesnt have to be unique for the same string :) So when will the first be that has session leakage because of that
On 9/16/08, Matej Knopp <[EMAIL PROTECTED]> wrote: > Another approach would be just counting hash from session id and mod it. > > -Matej > > On Tue, Sep 16, 2008 at 6:00 PM, Uwe Schäfer > <[EMAIL PROTECTED]>wrote: > >> Matej Knopp schrieb: >> >>> I had a quick glance at the patch. The folder hierarchy it creates seems >>> to >>> be quite deep, i'm not sure if that is necessary. Perhaps 3-4 levels >>> would >>> be enough? Also I'm afraid that this approach would leave lot of empty >>> folders. >>> >> >> well, that depends on the number of different chars the container uses in >> a >> session-id. i honestly don´t know if this is part of the spec. >> of course making every fourth char a / might be enough. it is just that >> i´ve seen this strategy in "squid". >> >> yeah, i did not take a look at removing yet. i´ll do in the evening. >> >> cu uwe >> >> >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
