prevent attack on the session name cookie
This commit is contained in:
Marc Delisle
@@ -5,6 +5,9 @@ phpMyAdmin - ChangeLog
|
|||||||
$Id$
|
$Id$
|
||||||
$HeadURL$
|
$HeadURL$
|
||||||
|
|
||||||
|
2007-01-08 Marc Delisle <lem9@users.sourceforge.net>
|
||||||
|
* libraries/session.inc.php: prevent attack on session name cookie
|
||||||
|
|
||||||
2007-01-05 Marc Delisle <lem9@users.sourceforge.net>
|
2007-01-05 Marc Delisle <lem9@users.sourceforge.net>
|
||||||
* libraries/session.inc.php: bug #1538132, remove the setting of
|
* libraries/session.inc.php: bug #1538132, remove the setting of
|
||||||
session.save_handler to 'files'
|
session.save_handler to 'files'
|
||||||
|
|||||||
@@ -81,7 +81,14 @@ session_cache_limiter('private');
|
|||||||
// See bug #1538132. This would block normal behavior on a cluster
|
// See bug #1538132. This would block normal behavior on a cluster
|
||||||
//ini_set('session.save_handler', 'files');
|
//ini_set('session.save_handler', 'files');
|
||||||
|
|
||||||
@session_name('phpMyAdmin');
|
$session_name = 'phpMyAdmin';
|
||||||
|
@session_name($session_name);
|
||||||
|
// strictly, PHP 4 since 4.4.2 would not need a verification
|
||||||
|
if (version_compare(PHP_VERSION, '5.1.2', 'lt')
|
||||||
|
&& isset($_COOKIE[$session_name])
|
||||||
|
&& eregi("\r|\n", $_COOKIE[$session_name])) {
|
||||||
|
die('attacked');
|
||||||
|
}
|
||||||
@session_start();
|
@session_start();
|
||||||
|
|
||||||
/**
|
/**
|
||||||
@@ -93,7 +100,7 @@ if (!isset($_SESSION[' PMA_token '])) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* trys to secure session from hijacking and fixation
|
* tries to secure session from hijacking and fixation
|
||||||
* should be called before login and after successfull login
|
* should be called before login and after successfull login
|
||||||
* (only required if sensitive information stored in session)
|
* (only required if sensitive information stored in session)
|
||||||
*
|
*
|
||||||
|
|||||||
Reference in New Issue
Block a user