stealing cookie do not need to sniff session at all. Just a good ole XSS will work.
On Fri, Nov 26, 2010 at 3:53 AM, guruyaya <[email protected]> wrote: > If I can sniff the traffic, I must have access to the router that
- Re: [web2py] Re: one more security ... Phyo Arkar
- Re: [web2py] Re: one more security feature in tr... Phyo Arkar
- [web2py] Re: one more security feature in trunk guruyaya
- Re: [web2py] Re: one more security feature in trunk Kuba Kucharski
- Re: [web2py] Re: one more security feature in tr... Phyo Arkar
- [web2py] Re: one more security feature in tr... mdipierro
- [web2py] Re: one more security feature i... selecta
- [web2py] Re: one more security feat... mdipierro
- Re: [web2py] Re: one more secur... Jonathan Lundell
- [web2py] Re: one more security ... mdipierro
- Re: [web2py] Re: one more security feature in trunk Phyo Arkar
