[Owasp-csrfguard] The results of your email commands

Barber, Thomas X thomas.x.barber at jpmorgan.com
Wed Jul 10 08:11:16 UTC 2013


Hi Ming,

I've been stumped on this for a while now, what does your suggestion fix exactly? It's only XMLHttpRequests that IE is failing on for me and not sure if your suggestions affect those.

Feel free to update directly on stack overflow, I'm monitoring that post (I raised it originally) 

Thanks

Tom

Tom Barber | Application Developer GFS - Technology | Corporate & Investment Bank (CIB) | J.P. Morgan, Chaseside - Hampshire Building, Floor 2, Bournemouth BH7 7DA, United Kingdom | T:+44 (0)1202 320097 |  thomas.X.barber at jpmorgan.com

-----Original Message-----
From: owasp-csrfguard-bounces at lists.owasp.org [mailto:owasp-csrfguard-bounces at lists.owasp.org] On Behalf Of Cheung, Ming
Sent: 09 July 2013 17:06
To: owasp-csrfguard at lists.owasp.org
Subject: Re: [Owasp-csrfguard] The results of your email commands

Since I've heard nothing back from the community, I have updated my finding with the following link.


http://stackoverflow.com/questions/17347806/csrfguard-request-token-does-not-match-session-token


Thanks,
Ming

-----Original Message-----
From: owasp-csrfguard-owner at lists.owasp.org [mailto:owasp-csrfguard-owner at lists.owasp.org]
Sent: Saturday, July 06, 2013 3:05 PM
To: Cheung, Ming
Subject: The results of your email commands

The results of your email command are provided below. Attached is your original message.

- Results:
    Ignoring non-text/plain MIME parts

- Unprocessed:
    I have the same issue as described with this link.
    http://stackoverflow.com/questions/17347806/csrfguard-request-token-does-not-match-session-token
    Thanks,
    Ming
    ###################################################################
    CONFIDENTIALITY NOTICE: This communication, including attachments,
    is intended only for the use of the individual or entity to which
    it is addressed and may contain information that is privileged,
    confidential, and exempt from disclosure under applicable law.
    If you are not the intended recipient, you are notified that any
    use, dissemination, forwarding, distribution, or copying of the
    communication is strictly prohibited. Please notify the sender
    immediately by e-mail if you have received this communication by
    mistake and delete all copies of the original message and
    attachments from your system.
    ################################################################### 

- Done.


###################################################################
CONFIDENTIALITY NOTICE: This communication, including attachments, is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law.
If you are not the intended recipient, you are notified that any use, dissemination, forwarding, distribution, or copying of the communication is strictly prohibited. Please notify the sender immediately by e-mail if you have received this communication by mistake and delete all copies of the original message and attachments from your system.
###################################################################
_______________________________________________
Owasp-csrfguard mailing list
Owasp-csrfguard at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-csrfguard

This email is confidential and subject to important disclaimers and conditions including on offers for the purchase or sale of securities, accuracy and completeness of information, viruses, confidentiality, legal privilege, and legal entity disclaimers, available at http://www.jpmorgan.com/pages/disclosures/email.  


More information about the Owasp-csrfguard mailing list