[wpmu-trac] [WordPress MU Trac] #1107: Making 'default' $cookiehash more unique. [Has Patch]
WordPress MU Trac
wpmu-trac at lists.automattic.com
Sun Sep 6 04:58:08 UTC 2009
#1107: Making 'default' $cookiehash more unique. [Has Patch]
-------------------------+--------------------------------------------------
Reporter: Jason_Jm | Owner: Jason_JM
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Security | Version:
Severity: normal | Keywords: security, cookiehash, unique, hash, integration
-------------------------+--------------------------------------------------
Currently $cookiehash is set to '' by default. Comments point to things
saying this is unique. This is not exactly true.
The patch provided sets cookiehash to the md5 of the current site, and
considers the appropriate scheme as well (http/https). This is more
unique than the empty string '' currently in-place.
V1 Patch provided.
--
Ticket URL: <http://trac.mu.wordpress.org/ticket/1107>
WordPress MU Trac <http://mu.wordpress.org/>
WordPress Multiuser
More information about the wpmu-trac
mailing list