Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
AdamN
on Oct 11, 2010
|
parent
|
context
|
favorite
| on:
How Our Startup Got Featured on CNN
That secret key is not the one in our production repository. We overwrite our development settings in other files.
Regardless, the Django secret_key isn't used to control systems or access data :-)
-Adam Nelson
jfarmer
on Oct 11, 2010
[–]
No, but it's probably used to sign cookies and other requests, which means one could hijack someone else's session.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Regardless, the Django secret_key isn't used to control systems or access data :-)
-Adam Nelson