Surely if you were able to do this, you would use it for cookie tossing rather t... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

tshadwell on Jan 18, 2014 | parent | context | favorite | on: Cookie Bomb or Let's Break the Internet

Surely if you were able to do this, you would use it for cookie tossing rather than this simple mischief?

homakov on Jan 18, 2014 [–]

Cookie tossing are not always helpful. If session is properly tied with csrf token there's not much you can do with it.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact