diff options
| author | marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544> | 2008-08-31 20:00:41 +0000 |
|---|---|---|
| committer | marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544> | 2008-08-31 20:00:41 +0000 |
| commit | 676e87ccfae0d8a951b10145b41e13d2c5ccfe02 (patch) | |
| tree | 576c98faa955fa4293b68d08a3034002943ec4e9 /engine/lib/sessions.php | |
| parent | cfcb03d40034bd9a122eac309e149d7af7b44893 (diff) | |
| download | elgg-676e87ccfae0d8a951b10145b41e13d2c5ccfe02.tar.gz elgg-676e87ccfae0d8a951b10145b41e13d2c5ccfe02.tar.bz2 | |
Some session fingerprinting code. Requires user agent to be consistent across requests.
git-svn-id: https://code.elgg.org/elgg/trunk@2047 36083f99-b078-4883-b0ff-0f9b5a30f544
Diffstat (limited to 'engine/lib/sessions.php')
| -rw-r--r-- | engine/lib/sessions.php | 23 |
1 files changed, 22 insertions, 1 deletions
diff --git a/engine/lib/sessions.php b/engine/lib/sessions.php index c6ae6f8d4..0a35fec1a 100644 --- a/engine/lib/sessions.php +++ b/engine/lib/sessions.php @@ -162,6 +162,13 @@ session_destroy();
return true;
+ } + + function get_session_fingerprint() + { + global $CONFIG; + + return md5($_SERVER['HTTP_USER_AGENT'] ); }
/**
@@ -182,7 +189,21 @@ if (!is_db_installed()) return false;
session_name('Elgg');
- session_start();
+ session_start(); + + // Do some sanity checking by generating a fingerprint (makes some XSS attacks harder) + if (isset($_SESSION['__elgg_fingerprint'])) + { + if ($_SESSION['__elgg_fingerprint'] != get_session_fingerprint()) + { + session_destroy(); + return false; + } + } + else + { + $_SESSION['__elgg_fingerprint'] = get_session_fingerprint(); + } if (empty($_SESSION['guid'])) {
if (isset($_COOKIE['elggperm'])) {
|