We don't bite newbies here... much | |
PerlMonks |
Re: Re: Encrypted Storage of sensible Data in a Cookieby drewbie (Chaplain) |
on Oct 23, 2001 at 01:50 UTC ( [id://120644]=note: print w/replies, xml ) | Need Help?? |
According to the Eagle book, the reason for the double MD5 is that there is a remote possibility that an expoit in the algorithm could be used to break the MD5.
One should always include a MAC when sending a cookie with any semi-useful or important data. Remember, NEVER TRUST THE CLIENT. :-)
In Section
Cool Uses for Perl
|
|