Encrypted sessions for Mojolicious
an invention by kraih
Updated 22 days ago. 1 hackers ♥️. 1 follower.

Mojolicious](http://mojolicious.org) is a web development toolkit and framework for Perl. It is used by quite a few openSUSE projects, such as openQA and Cavil.

It contains session management features that rely on cryptographically signed cookies. While they are still considered reasonably secure, tooling has become available to make attacks much easier. So, for this project we will be looking into the addition of encrypted sessions as an alternative to signed cookies, and for ways to encourage users to use more secure application secrets.

Looking for hackers with the skills:

Nothing? Add some keywords!

This project is part of:

Hack Week 24

Activity

  • about 1 month ago: tinita liked this project.
  • about 1 month ago: kraih started this project.
  • about 1 month ago: kraih originated this project.


    • Comments

    • kraih
      24 days ago by kraih | Reply

      Project was successful: https://github.com/mojolicious/mojo/pull/2212

    Similar Projects

    This project is one of its kind!