>>208
ffuuka makes use of randomly generated acsr token, would that not prevent session hijacking?