@johnwilander Cookies over an insecure transport are pretty scary. Think Firesheep.https://twitter.com/SteveBellovin/status/982273037373341696 …
-
-
@ssivakorn has written her findings about insecure Google (and other) cookies in https://www.cs.columbia.edu/~suphannee/papers/sivakorn.sp2016.cookiehijack.pdf … and it seems sensitive data is exposed. (Table II, Fig 3, Table VI) You two should talk.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
(Google has lots of non-auth non-secure cookies though. It would not at all shock me to learn that some of them are valuable.)
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.