- User Since
- Oct 12 2016, 10:13 AM (122 w, 6 d)
Tue, Feb 5
Thanks, greatly appreciated.
Thanks, worked perfectly!
It's just a minor thing I was briefly confused about when I used the "Create Diff" for the first time.
Jun 24 2018
Oct 12 2016
Specific attack scenario: Phabricator is used to host proprietary code. Someone logs into Phabricator on a shared computer and forgets to log out. That shared computer is now forever logged into his account, allowing anyone using it to access said proprietary code. If the cookie would expire or at least be session-only, the risk would be significantly lower.