search

jeffreyhi1 / loginsystem-rd

Automatically exported from code.google.com/p/loginsystem-rd
0 stars 0 forks source link

Session Fixation ASP (mainly) but also PHP #29

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago 
Make corrections in the code for same. PHP can issue a new session ID on
login.  ASP will need a work around as attempting to set a new session ID
would perform a DOS against the user.  OWASP has the code for the Classic
ASP issue.

Original issue reported on code.google.com by rdivilb...@gmail.com on 29 Mar 2010 at 10:03

GoogleCodeExporter commented 8 years ago 
Fixed

Original comment by rdivilb...@gmail.com on 20 Apr 2010 at 6:15