Security and cookieless sessions
From: Nick (Nick@Bluefield.com.hk)
Date: 10/25/02
- Next message: Stefan Schachner[MS]: "RE: Security and cookieless sessions"
- Previous message: Charles: "Project Creation Errors"
- Next in thread: Stefan Schachner[MS]: "RE: Security and cookieless sessions"
- Reply: Stefan Schachner[MS]: "RE: Security and cookieless sessions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Nick" <Nick@Bluefield.com.hk> Date: Fri, 25 Oct 2002 09:44:23 +0800
Hi,
Has anyone looked in to the security aspects of using cookieless session in
.NET.
Are they less secure than using cookie sessions? How would you recommend
securing a web app using cookieless sessions.
SSL is the first obvious requirement but is this enough? What else should be
included either within the app or external?
Thanks
Nick
- Next message: Stefan Schachner[MS]: "RE: Security and cookieless sessions"
- Previous message: Charles: "Project Creation Errors"
- Next in thread: Stefan Schachner[MS]: "RE: Security and cookieless sessions"
- Reply: Stefan Schachner[MS]: "RE: Security and cookieless sessions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
