On 04.06.2014 14:33, Brad Harris wrote:
the match strings are wrong, should be !^http://....$Thanks Walter, I tried your suggestion but get the same result. I inherited this site from another company and I've already let my users know that it's an insecure way of doing it and demonstrated with a simple Chrome extension how easy it is to bypass. Is there another way to do this?
yes, session cookies; Walter
smime.p7s
Description: S/MIME Cryptographic Signature
