id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
9489	Unnecessary validation of internal data in contrib.sessions	Grzegorz Lukasik <hauserx@…>	nobody	"In django/contrib/sessions/models.py in method get_decoded data from database is verified for some reason (with md5 signature).
The signature is added by method SessionManager.encode. 
Why internal data is checked if it cannot be alter by an external user?"		closed	contrib.sessions	1.0		duplicate	sessions get_decoded md5 tamper		Design decision needed	0	0	0	0	0	0