kwallet and session-specific URLs
Malte Starostik
malte at kde.org
Thu Sep 25 12:33:27 BST 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
I noticed a minor problem with kwallet when logging in to sms.de:
www.sms.de redirects to a URL like http://
www-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.id.sms.de:80/
where xxxxxxxxxxxxxxxxxxxxxxxxxx are hex characters. This string varies
every(?)time you enter the page. Therefore, the stored username (no prob,
filled in by cookie) and password (problem here) isn't filled in by konq as
it doesn't find the URL in the wallet. I guess the same applies to
session-ids in the URLs path for otherwise identical pages.
I'm not sure how a somewhat fuzzy match could be done here without possibly
leaking information to inappropriate sites, but maybe someone else has an
idea?
Regars,
- -Malte
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/ctKKVDF3RdLzx4cRAvSMAJsEi4y6pVht/CjpB+EdIcernMZF3wCgndvU
8zp8cvP/qOZCxwEuXYCD3L8=
=8uZO
-----END PGP SIGNATURE-----
More information about the kfm-devel
mailing list