On Nov 27, 4:05 pm, Ian Holsman <[EMAIL PROTECTED]> wrote:
>
> That why large companies have comittee's and auditors for.
>
Oh yes, I learned what a committee was for when I walked on to a job
which was a complete mess. Make it look like I was at fault, when they
were just buying cheap hardware f
On Nov 26, 3:37 am, "Marty Alchin" <[EMAIL PROTECTED]> wrote:
>If you're as concerned with security as it
> sounds like you are, you might look at SecurID.[1]
>
> -Gul
>
> [1]http://en.wikipedia.org/wiki/SecurID
After thinking about it for a while, perhaps using SecurID would be
the better soluti
What is the license for the signed cookie code?
On Nov 26, 4:48 am, "Marty Alchin" <[EMAIL PROTECTED]> wrote:
> On Nov 26, 2007 8:30 AM, Patryk Zawadzki <[EMAIL PROTECTED]> wrote:
>
> > I'm not sure what makes you believe that two cookies are more secure
> > than one. Two n-bit strings are just a
I can be unclear at times, especially while I'm very tired. I'll have
to make an example of what I'm talking about included with an example
or so. People tend to be a bit more understanding if there is
something there to play with instead of an idea.
I try not to use by IP due to the problem you
Hello,
I'm requesting someone please fix the code to the sessions module to
make Django secure. Currently Django is vulnerable to session
hijacking. Even though the length of the keys are long, a brute force
attack would not be difficult to gain access to a site until they get
a valid item in the
