Cache-Control: private HTTP headers and body. Should this be reported as security concern?

前端 未结 0 983
粉色の甜心
粉色の甜心 2021-02-12 07:21

BACKGROUND:

I\'m reading the OWASP testing guide for web applications

Session ID should never be sent over unencrypted transport and

相关标签:
回答
  • 消灭零回复
提交回复
热议问题