Posted
by Toto
on Stack Overflow
See other posts from Stack Overflow
or by Toto
Published on 2010-05-11T19:49:22Z
Indexed on
2010/05/11
19:54 UTC
Read the original article
Hit count: 344
Do I have to do anything special to avoid session hijacking using Kohana framework?
(Assuming the session is manipulated only with the Kohana Session library)
Thanks in advance
© Stack Overflow or respective owner
as seen on Stack Overflow
- Search for 'Stack Overflow'
Maybe not the best explanation, but hear me out. Say I have the following in a config file called menu.php:
// Default controller is 'home' and default action is 'index'
return array(
'items' => array(
'Home' => '',
'News' => 'news',
'Resources' => 'resources',
…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
I'm looking at how to set up a mid-sized web application with Kohana 3. I have implemented MVC patterns in the past but never worked against a "formalized" MVC framework so I'm still getting my head around the terminology - toying around with basic examples, building views and templates, and so on…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
I'm looking at how to set up a mid-sized web application with Kohana 3. I have implemented MVC patterns in the past but never worked against a "formalized" MVC framework so I'm still getting my head around the terminology - toying around with basic examples, building views and templates, and so on…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
I'm looking at how to set up a mid-sized web application with Kohana 3. I have implemented MVC patterns in the past but never worked against a "formalized" MVC framework so I'm still getting my head around the terminology - toying around with basic examples, building views and templates, and so on…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
Inspired from the other community wiki's, I'm interested in hearing about the lesser known Kohana tips, tricks and features.
Please, include only one tip per answer.
Add Kohana versions if necessary.
This a community wiki.
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
Do I have to do anything special to avoid session hijacking using Kohana framework?
(Assuming the session is manipulated only with the Kohana Session library)
Thanks in advance
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
I have read an article about session hijacking. please tell me asp.net session is how much secure. can people also do session hijacking with asp.net session. and also tell me how can i prevent my application from session hijacking.
if you have any good example than also tell me that how people do…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
When the user logs in the current session vairables are set
$_SESSION['user']['timeout'] = time();
$_SESSION['user']['ip'] = $_SERVER['REMOTE_ADDR'];
$_SESSION['user']['agent'] = $_SERVER['HTTP_USER_AGENT'];
In my common.php page (required on ALL php pages) i have used the below script, which resets…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
I have a web app used by a small number of people (internal only) and am using a randomised sessionID that is stored under the user record and placed in various links.
I have had a problem where users are sending links to each other which is allowing them to hijack the sender's session.
What are…
>>> More
as seen on Stack Overflow
- Search for 'Stack Overflow'
While I was reading about session hijacking articles, i learned that it would be nice to encrypt session id value that is stored in a cookie.
As far as I know, when I start a session by calling session_start(), PHP does not encrypt session id value in a cookie.
How do I encrypt session id value…
>>> More
