Matt Chisholm <[EMAIL PROTECTED]> added the comment: Any progress on this? This patch is extremely straightforward (only three lines of code), and should not break existing code.
The HttpOnly extension to cookies is now supported by IE, Firefox 3.0, and Opera. This article explains why HttpOnly is a good way to make cross-site scripting attacks significantly more difficult: http://www.codinghorror.com/blog/archives/001167.htmllop I'd really like to see this patch applied to Cookie.py. ---------- nosy: +glyphobet _______________________________________ Python tracker <[EMAIL PROTECTED]> <http://bugs.python.org/issue1638033> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
