[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kfm-devel
Subject:    Re: Bug#15426: Konqueror 1.9.8 has a (security) problem with cookies
From:       Dawit Alemayehu <adawit () kde ! org>
Date:       2001-06-18 22:00:32
[Download RAW message or body]

On Monday 18 June 2001 10:06, Stuart Grimshaw wrote:
> I'm seeing the same behaviour with Konqueror 2.1.1 with KDE 2.1.1 (with
> kdelibs 2.1.2) on Debian 2.2 (potato)
>
> I can verify that the problem is not down to password cacheing, I don't use
> the 401 response for authentication (yet).
>
> I'm using PHP to develop an application, and PHP stores it's session ID's
> in a cookie, who's "Expires on" is set to "End of Session".
>
> I can close Konqueror & re-open it and (before I re-visit the site) the
> cookie is still set.

Hi,

This is a known problem.  Currently, the cookiejar removes "End-of session" cookies
when the entire KDE session ends or you manually shut it down using "kcookiejar --shutdown". 
This will be fixed for 2.2.  Infact that is what I am working on right now :). 

Thanks for the report.

Regards,
Dawit A.

[prev in list] [next in list] [prev in thread] [next in thread]