[ic] $::Control leaking between pages?
Peter
peter at pajamian.dhs.org
Mon Apr 4 02:35:42 UTC 2016
On 04/04/16 13:50, Mike Heins wrote:
> Question is, did the patch fix the problem?
That's going to be difficult to test. The most reliable way to test it
(that I can think of) would be the following:
Page "A" would be the page that the data is leaking *from*.
Page "B" would be the page that the leaked data is appearing on where it
shouldn't.
Wait until a very low-traffic time to run this test.
Drop the "StartServers" down to a really low value in interchange.cfg
and restart IC.
Use wget or curl in a loop to pound page "A" continuously during the
test, this will ensure that the data gets stashed in the child processes
as much as possible.
Repeatedly dump cookies and then fetch page "B" in your browser while
this is happening, watch for the data to get leaked to this page.
Do the above both with and without Mike's patch and compare results.
Peter
More information about the interchange-users
mailing list