Why do I have to keep logging in so often? (in: Site Stuff)

admin

By: aciddose
11 Mar 13:14

It would make sense for the cookie to contain amongst other data the session ID key hash, which should depend upon your IP address as seen by the server during log-in. This would make it impossible for a man-in-the-middle attack to impersonate you from a different IP which is overall much better. The key exchange process needs to occur every time some element of the key itself such as your IP address changes to ensure any semblance of security.

I would also hope that the implementation is sensi…

Go to this post

Go to first unread post in this topic

Read more here: Source link