Re: Solution for session_regenerate_id() issues

From:	Yasuo Ohgaki	Date:	Wed, 19 Mar 2014 10:28:32 +0000
Subject:	Re: Solution for session_regenerate_id() issues
References:	1 2 3 4 5 6 7	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message

Hi Ferenc,

On Wed, Mar 19, 2014 at 7:12 PM, Ferenc Kovacs <[email protected]> wrote:

> >
>> > But speaking of sessions and security, I'll mail you privately about
>> > something because I didn't see an option in the bug reporting form to
>> > mark it as a private one.
>> >
>>
>> If you choose "security" bug type, it's hidden.
>>
>
> nope, security bug type only makes it send the bug mail to
> [email protected], only private bugs are protected from public access.
> that is something really error-prone, so I remember some discussion about
> changing that, and making new security bugs to be private by default, but
> AFAIK we never implemented that.
>

It surprises me.
Thank you for your info.

--
Yasuo Ohgaki
[email protected]


   

Thread (24 messages)

• Yasuo OhgakiThu, 13 Mar 2014 04:03:15 +0000
  • Yasuo OhgakiFri, 14 Mar 2014 03:10:10 +0000Re: Solution for session_regenerate_id() issues
  • Mateusz KocielskiFri, 14 Mar 2014 07:41:13 +0000
    • Yasuo OhgakiFri, 14 Mar 2014 09:37:35 +0000
      • Chris WrightFri, 14 Mar 2014 10:37:04 +0000
        • Yasuo OhgakiFri, 14 Mar 2014 10:57:40 +0000
      • Mateusz KocielskiFri, 14 Mar 2014 11:03:26 +0000
        • Yasuo OhgakiFri, 14 Mar 2014 23:46:29 +0000
          • Mateusz KocielskiSun, 16 Mar 2014 08:53:39 +0000
            • Yasuo OhgakiMon, 17 Mar 2014 02:15:39 +0000
              • Yasuo OhgakiMon, 17 Mar 2014 02:22:34 +0000
  • Yasuo OhgakiWed, 19 Mar 2014 03:27:44 +0000Re: Solution for session_regenerate_id() issues
• Andrey AndreevMon, 17 Mar 2014 11:00:34 +0000Re: Solution for session_regenerate_id() issues
  • Yasuo OhgakiMon, 17 Mar 2014 11:47:08 +0000
    • Andrey AndreevMon, 17 Mar 2014 12:02:24 +0000
      • Yasuo OhgakiMon, 17 Mar 2014 20:03:44 +0000
        • Andrey AndreevMon, 17 Mar 2014 21:01:12 +0000
          • Yasuo OhgakiMon, 17 Mar 2014 23:07:21 +0000
            • Andrey AndreevTue, 18 Mar 2014 10:23:41 +0000
              • Yasuo OhgakiWed, 19 Mar 2014 02:10:25 +0000
            • Ferenc KovacsWed, 19 Mar 2014 10:12:19 +0000
              • Yasuo OhgakiWed, 19 Mar 2014 10:28:32 +0000
              • Andrey AndreevWed, 19 Mar 2014 15:22:07 +0000
                • Yasuo OhgakiWed, 19 Mar 2014 18:17:48 +0000