- twitter card - One Line of Code that Compromises Your Server

Forgive the click-bait title, but Jack Singleton really is talking about how
one in a web- configuration can hand the keys of a out to an
attacker. The line of in question sets the key for signing and encrypting
cookies. In this first installment, Jack shows how it’s surprisingly easy to
crack a poorly chosen key
for this purpose, which is the first step that will
lead him to a shell on the server.

more…



Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here