You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
D:S:Cookie:
Another setting is also required: session_cookie_key, which should contain a random string of at least 16 characters (shorter keys are not cryptographically strong using AES in CBC mode).
[...]
Compromising session_cookie_key will disclose session data to clients and proxies or eavesdroppers and will also allow tampering, for example session theft.
D:Error.pm sub _censor:
elsif ($key =~ /(pass|card?num|pan|secret|private_key)/i) {
Can the session_cookie_key be censored too?
The text was updated successfully, but these errors were encountered:
D:S:Cookie:
Another setting is also required: session_cookie_key, which should contain a random string of at least 16 characters (shorter keys are not cryptographically strong using AES in CBC mode).
[...]
Compromising session_cookie_key will disclose session data to clients and proxies or eavesdroppers and will also allow tampering, for example session theft.
D:Error.pm sub _censor:
elsif ($key =~ /(pass|card?num|pan|secret|private_key)/i) {
Can the session_cookie_key be censored too?
The text was updated successfully, but these errors were encountered: