Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/technion/wp_breach_patch
A patch to Wordpress that mitigates the BREACH vulnerability
https://github.com/technion/wp_breach_patch
Last synced: 2 months ago
JSON representation
A patch to Wordpress that mitigates the BREACH vulnerability
- Host: GitHub
- URL: https://github.com/technion/wp_breach_patch
- Owner: technion
- License: bsd-2-clause
- Created: 2013-08-08T05:37:36.000Z (over 11 years ago)
- Default Branch: master
- Last Pushed: 2013-08-20T00:32:55.000Z (over 11 years ago)
- Last Synced: 2023-03-22T19:33:07.385Z (almost 2 years ago)
- Size: 125 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
wp_breach_patch
===============
A plugin for Wordpress that mitigates the BREACH vulnerability.
Technical
---------
Implements "Mitigation #4" as detailed in the original BREACH paper. Algorithm:
CSRF = OTP || (CSRF ^ OTP)
Installation
------------
There is no configuration associated with this plugin.
Simply copy it to your plugins directory as per typical plugin installation process, then activate it.
You will need to logout of Wordpress and back in to ensure all tokens are regenerated.