Home page logo

webappsec logo WebApp Sec mailing list archives

Re: improvements in session management?
From: Michael Ströder <michael () stroeder com>
Date: Thu, 01 Apr 2004 13:30:46 +0200

WebAppSecurity [Technicalinfo.net] wrote:
1.  Only allow any user to have a single active connection to the web
application. (simultaneous logins result in slosure of all sessions).

Great opportunity for DoS attacks. ;-)

Ciao, Michael.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]