[Owasp-guide] Mistake in Authentication document

Andrew van der Stock vanderaj at owasp.org
Fri Sep 5 11:56:51 EDT 2008


Thanks - we'll adjust it in the Wiki, which is about to start getting  
a lot of attention.

I'm dedicating Wednesday and Friday mornings to editing the Guide.

Anyone else want to help?

thanks,
Andrew


On Sep 5, 2008, at 9:46 AM, Danilo Nascimento wrote:

> Hi Guys!
>
> When i was reading the OWASPGuide2.0.1 i found a mistake in
> Authentication document,
> the php code sample in "Multiple Key Lookups" is actually the php code
> sample for "Referer Checks".
>
>
> The code below appears twice:
>
> PHP
> if ( $_SERVER['HTTP_REFERER'] != 'http://www.example.com/ 
> index.php' ) {
>       throw …
> }
>
>
> Regards,
> Danilo Nascimento
> _______________________________________________
> Owasp-guide mailing list
> Owasp-guide at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-guide


thanks,
Andrew van der Stock
Lead Author, OWASP Guide and OWASP Top 10




-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2458 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-guide/attachments/20080905/b9a1325e/attachment.bin 


More information about the Owasp-guide mailing list