On Thu, Oct 3, 2013 at 10:48 PM, Kurt Seifried <kseifried at redhat.com> wrote: > My one comment would be to possibly make the reply warning more > prominent and also mention protecting the cookie with HTTPS (wireless > networks in coffee shops/etc.). That's a good idea; we talk about cookie security and HTTPS elsewhere, but it's probably worth re-mentioning right there, too. Thanks for the suggestion! Jacob -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack-security/attachments/20131003/7ed867f1/attachment.html>