-
Hey, I am noob in configuring ModSecurity. Following [this](https://www.nginx.com/resources/admin-guide/nginx-plus-modsecurity-waf-owasp-crs/) tutorial, I have configured nginx v1.13.0 with ModSecuri…
-
When logging in you'll be redirected to the welcome page. When it loads the Welcome page it immediately forgets I'm logged in and any link I click results in a 404 page. When logging in again after th…
-
Give new session id when creating a user.
-
Hi,
apparently, it is not always recommended to commit composer.lock to bundles as stated here :
https://getcomposer.org/doc/01-basic-usage.md#composer-lock-the-lock-file
I'm posting this issu…
-
Hello @QuChen88 and team!
I have an EC2 instance running on AWS with Ubuntu 16.04.1 LTS, Apache 2.4.18, PHP 7.0.8:
```
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=16.04
DISTRIB_CODENAME=xenial
DISTRIB…
-
This issue has been migrated from Redmine: https://dev.icinga.com/issues/5626
**Created by tgelf on 2014-02-08 00:04:31 +00:00**
Assignee: _(none)_
Status: _Closed_ (closed on _2015-03-27 09:11:55 …
-
When I try the Session Fixation lesson, if I add the SID parameter to the href link using "?SID=12345", stage 2 fails. However, if I use "&SID=12345", all is well.
Using the former, stage 2 ends up i…
-
after a user signs up, but haven't yet activated, an attempt to login will simply tell the user that the email/password was invalid. this is because login() seems to return nil when the activation sta…
-
### Environment
I have configured [libModSecurity (aka v3)](https://github.com/SpiderLabs/ModSecurity/tree/v3/master) and [nginx connector](https://github.com/SpiderLabs/ModSecurity-nginx) on [CentO…
-
I have been using jhipster v3.1.0 in production mode for my internal system and I am stuck with this particular problem that whenever any user's session expires they are thrown a cookie-theft exceptio…