mod_auth_tkt [PROPOSAL] Include the User-Agent alongside the IP address

[PROPOSAL] Include the User-Agent alongside the IP address

Open fancsali opened this issue 3 years ago • 0 comments

For an additional layer of security the cookie hash could include the User-Agent, so to have a bit more confidence, it's the same browser using the cookie, that has been authenticated in the first place.

Jul 14 '21 10:07 fancsali

mod_auth_tkt mod_auth_tkt copied to clipboard

[PROPOSAL] Include the User-Agent alongside the IP address

mod_auth_tkt
mod_auth_tkt copied to clipboard