Django Book 翻译
菜单>:
TOC
返回
原文:
For example, PHP allows session identifiers to be passed in the URL (e.g., ``http://example.com/?PHPSESSID=fa90197ca25f6ab40bb1374c510d7a32`` ). An attacker who tricks a user into clicking a link with a hard-coded session ID will cause the user to pick up that session.
翻译:
例如,PHP允许在URL(如 ``http://example.com/?PHPSESSID=fa90197ca25f6ab40bb1374c510d7a32`` 等)中传递会话标识符。攻击者诱骗用户点击某个带有硬编码会话ID的链接就会导致该用户恢复那个会话。
备注:
译者: