Sign data stored in Memcached
Opened this issue · 1 comments
LibertyPaul commented
As per PHP reference recommendation, it is unsafe to unserialize
data that was extracted from external storage.
In order to ensure that data was not altered, need to add signature for every serialized value (hash_hmac
).
LibertyPaul commented
Or use JSON