svn commit: r889722 - /tomcat/tc6.0.x/trunk/STATUS.txt

[markt]

Author: markt
Date: Fri Dec 11 17:44:35 2009
New Revision: 889722

URL: http://svn.apache.org/viewvc?rev=889722&view=rev
Log:
Proposal

Modified:
    tomcat/tc6.0.x/trunk/STATUS.txt

Modified: tomcat/tc6.0.x/trunk/STATUS.txt
URL: 
http://svn.apache.org/viewvc/tomcat/tc6.0.x/trunk/STATUS.txt?rev=889722&r1=889721&r2=889722&view=diff
==============================================================================
--- tomcat/tc6.0.x/trunk/STATUS.txt (original)
+++ tomcat/tc6.0.x/trunk/STATUS.txt Fri Dec 11 17:44:35 2009
@@ -487,3 +487,13 @@
   http://svn.apache.org/viewvc?rev=889606&view=rev
   +1: markt
   -1: 
+
+* Address https://issues.apache.org/bugzilla/show_bug.cgi?id=45255
+  Prevent session fixation by changing session ID on authentication by default
+  If you don't like the session ID changing by default, feel free to caveat 
your
+  vote. If there is suggicient support for the patch but insufficient support
+  for changing the ID by default I'll apply the patch with the default set to
+  not change the session ID
+  http://svn.apache.org/viewvc?rev=889716&view=rev
+  +1: markt
+  -1: 



---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org