The Web Application Hacker’s Handbook Discovering and Exploiting Security Flaws

A server cannot specify just any domain using this attribute. First, the

Download 5,76 Mb.

Pdf ko'rish

bet	364/875
Sana	01.01.2022
Hajmi	5,76 Mb.
	#293004

1 ... 360 361 362 363 364 365 366 367 ... 875

Bog'liq
3794 1008 4334

A server cannot specify just any domain using this attribute. First, the

domain specified must be either the same domain as the application is running

on or a domain that is its parent (either immediately or at some remove).

Second, the domain specified cannot be a top-level domain such as

.com

.co.uk

, because this would enable a malicious server to set arbitrary cookies

on any other domain. If the server violates one of these rules, the browser will

simply ignore the

Set-cookie

instruction.

If an application sets a cookie’s domain scope as unduly liberal, this may

expose the application to various security vulnerabilities.

For example, consider a blogging application that allows users to register,

located at the domain

wahh-blogs.com

, and when users log in to the applica-

tion they receive a session token in a cookie that is scoped to this domain. Each

user is able to create blogs that are accessed via a new subdomain which is pre-

fixed by their username, for example:

herman.wahh-blogs.com

solero.wahh-blogs.com

Download 5,76 Mb.

Do'stlaringiz bilan baham:

1 ... 360 361 362 363 364 365 366 367 ... 875