FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » Imported messages » comp.lang.php » session cookie: client side
Show: Today's Messages :: Polls :: Message Navigator
Return to the default flat view Create a new topic Submit Reply
Re: session cookie: client side [message #175898 is a reply to message #175897] Fri, 04 November 2011 14:21 Go to previous messageGo to previous message
sl@exabyte is currently offline  sl@exabyte
Messages: 16
Registered: March 2011
Karma:
Junior Member
> The cookie does not identify the user - it is just the session id. What
> the server does with it is something else.
>
> In general, the session id does identify the computer from which the
> cookie is being sent because the session id is a rather long
> pseudo-random alphanumeric value. Yes it's possible for someone else
> to intercept and read the session id, but in general it's unlikely.
>
> The real question is - what is the problem you are trying to resolve?
> If the data are that sensitive, you should be using a secure protocol
> for everything. If the data aren't sensitive enough to require a
> secure protocol, why do you think the cookie is?

I think I am missing something. By the term 'secure protocol', ie SSL,
implies that HTTPS be used, rather than HTTP, isn't it ?

Sorry if it is a stupid question. Anyway I shall google for SSL and HTTPS.
[Message index]
 
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Read Message
Previous Topic: sqlite and php
Next Topic: simple session question
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Sun Dec 22 12:37:32 GMT 2024

Total time taken to generate the page: 0.04012 seconds