Web Security Ben Stock


Exercise Sheet 11 Exercise 1 Fix

Written: 28.06.2019 17:51 Written By: Sebastian Roth

Hi Folks,

The first exercise on the current exercise sheet was way harder to exploit as planned.
Thus, some actions have taken place:
  - There is a fix pushed into the screecher repos that disables the same-site cookies
  - We have removed the mime-type detection for jpgs from your attacker domain
  - Your attacker folders are no longer protected via basic-auth
Sorry for that inconvenience.  

Privacy Policy | Legal Notice
If you encounter technical problems, please contact the administrators