[Owasp-pantera] Minor Issue with PPA

list at roseslabs.com list at roseslabs.com
Thu Nov 30 18:52:04 EST 2006

Hi Terrance,

thanks :)

You are correct right now the cookie plugin only checks for set-cookie and
set-cookie2 headers, I will add this header to the pattern detection.


Simon Roses Femerling

> <FONT face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif"
> size=2><DIV>First, congratulations on the new release! It's looking very
> good.</DIV><DIV>&nbsp;</DIV><DIV>I've found one issue that I actually
> first say last night under the previous version. I have a page that uses a
> cookie, but PPA doesn't show the cookie.</DIV><DIV>&nbsp;</DIV><DIV>The
> client request header contains the
> cookie:</DIV><DIV>&nbsp;</DIV><DIV>***********************************************</DIV><DIV>&nbsp;</DIV><DIV>GET
> <A
> href="http://ohcmhsrv002.interstell.home/Articles/BadPractices.nsf/BadOrderForm"
> target=blank>http://ohcmhsrv002.interstell.home/Articles/BadPractices.nsf/BadOrderForm</A>
> HTTP/1.1<BR>Accept-Language: en-us<BR>Accept-Encoding: gzip,
> deflate<BR>Host: ohcmhsrv002.interstell.home<BR>Accept: image/gif,
> image/x-xbitmap, image/jpeg, image/pjpeg, */*<BR>User-Agent: Mozilla/4.0
> (compatible; MSIE 7.0; Windows NT 5.2; .NET CLR 1.1.4322)<BR>Connection:
> Keep-Alive<BR>Cookie: ItemNumber=1000; ItemPrice=99.99<BR>UA-CPU:
> x86<BR>If-Modified-Since: Wed, 22 Nov 2006 00:09:45 GMT<BR>If-None-Match:
> W/\"MTAtODEwNS04NTI1NzIyMzAwNjU0NUU4LTAtMC1DTj1PaGNtaGxuZDAwMSBBZG1pbmlzdHJhdG9yL089aW50ZXJzdGVsbA==\"</DIV><DIV>&nbsp;</DIV><DIV>****************************************</DIV><DIV>&nbsp;</DIV><DIV>Does
> the cookie indicator only display if the server response header sets the
> cookie? Is this working as designed?</DIV><DIV>&nbsp;</DIV><DIV>I'm
> running on Windows 2003 Standard Edition with all Microsoft patches. I'm
> running Python 2.4 and MySQL 5.0.27; I can provide other config data as
> needed.<BR></DIV><DIV>Thanks!<BR><BR>Terrance&nbsp;A.&nbsp;Crow<BR>AVP&nbsp;Technology<BR>Corporate&nbsp;One&nbsp;Federal&nbsp;Credit&nbsp;Union<BR>ph:&nbsp;614/825-9316&nbsp;|&nbsp;fax:&nbsp;614.825.9201<BR>http://<A
> href="http://www.corpone.org"
> target=blank>www.corpone.org</A><BR></DIV></FONT>
> size=2>--------------------------------------------------------------------------------------------------------</FONT></DIV>
> <DIV><FONT size=2><STRONG>NOTICE:</STRONG>&nbsp; <BR>This email
> message is for the sole use of the intended recipient(s) and may contain
> confidential and privileged information.&nbsp; Any unauthorized review,
> use,
> disclosure or distribution is prohibited.&nbsp; If you are not the
> intended
> recipient, please contact the sender by reply email and destroy all copies
> of the original
> message.</FONT></DIV>
> size=2>--------------------------------------------------------------------------------------------------------</FONT></DIV>
> _______________________________________________
> Owasp-pantera mailing list
> Owasp-pantera at lists.owasp.org
> http://lists.owasp.org/mailman/listinfo/owasp-pantera

More information about the Owasp-pantera mailing list