SSL Encryption: Difference between revisions

Jump to navigation Jump to search
m
no edit summary
(New page: {{t|1091|Quote from exp on the anidb tracker (2008-04-17 23:43)}} URL: https://anidb.net ROOT CA: http://static.anidb.net/misc/ca.crt SHA1 Fingerprint=42:B5:D9:B7:2A:AC:18:5F:A7:10:4...)
 
mNo edit summary
Line 12: Line 12:
This means that:
This means that:


a) If we've accidentially hardcoded an access to http://anidb.net [^] somewhere, this would instantly allow an attacker to obtain your session authorisation cookie.
a) If we've accidentially hardcoded an access to http://anidb.net somewhere, this would instantly allow an attacker to obtain your session authorisation cookie.


b) Attackers may be able to infer the anidb pages you're browsing on and your anidb user id by looking at the cookie and referer data sent to anidb subdomains when stylesheet and image data is loaded. For maximum security you should browse anidb with all images and stylesheets disabled.
b) Attackers may be able to infer the anidb pages you're browsing on and your anidb user id by looking at the cookie and referer data sent to anidb subdomains when stylesheet and image data is loaded. For maximum security you should browse anidb with all images and stylesheets disabled.
Or, the recommended approach, use some VPN.}}
Or, the recommended approach, use some VPN.}}
staff
2,096

edits

Navigation menu

MediaWiki spam blocked by CleanTalk.
MediaWiki spam blocked by CleanTalk.