The discussion regarding cookies is old news. <http://help.netscape.com/kb/consumer/19981231-1.html> More info used to be here: <http://www.paradise.net.nz/~glineham/cookiemonster.html> Does anyone know where it went? The URL below gives an email address for Oliver Lineham <oliverat_private> but I can't seem to pull up a Web site for lineham.co.nz. Oh, wait - here's an article that gives the date when Oliver posted the Cookie Monster bug to BUGTRAQ: <http://webserver.cpg.com/ws/4.2/> OK, here is the original BUGTRAQ post: <3.0.6.32.19981224110919.007c7520at_private">http://www.securityfocus.com/templates/archive.pike?list=1&date=1998-12-22&msg=3.0.6.32.19981224110919.007c7520at_private> Unfortunately, it doesn't contain much other than "visit the Web site for more details". :( Anyway, IIRC, it's the same problem described in the Netscape advisory at the top of this message. Here's a bit of somewhat belated, but still frenzied, hype as well: <http://www.securiteam.com/exploits/Cookie_Monster_vulnerability.html> Other cookie-related info: <http://www.cookiecentral.com/bug/index.shtml> <http://www.w3.org/Security/Faq/wwwsf7.html#Q66> Steve
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:33:45 PDT