Skip to content

lesson16中signedCookie安全问题 #155

New issue
New issue
Open
Open
lesson16中signedCookie安全问题#155
@ihciah

Description

@ihciah
ihciah
opened on Mar 8, 2018

hash(key+message)无法防御长度扩展攻击,应当使用HMAC或hash(message+key)修补。

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions