On Dec 12, 2012, at 6:29 PM, Russ Allbery wrote: > Benjamin Coddington <[email protected]> writes: >> We have WAS tracking in a cookie for logout and are aware that max >> header sizes could be a problem for us -- we're growing services pretty >> quickly -- but it hasn't come up as a problem yet (that we know of). > > That's a good data point. We should get one of your solutions into the > tree, then, if it's working for folks. :)
I have a fair amount of work queued up around WebAuth that needs to happen before the summer which will bring our installation up to date. I will send along what we've done then. Ben
