RE: Decrypt / Encrypt Session objects

• Previous message: Kevin Kenny: "Dsn.Resolve() fails in ASP.NET"
• In reply to: Stefan: "Decrypt / Encrypt Session objects"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 29 Aug 2003 23:07:58 GMT

Yup, a Session object is stored on a server, and not in a client's browser
(cookies). As usual, take security precautions anyways if you feel the
need.

Charlie Nilsson [msft]
Visual Studio Update

-- 
This posting is provided "AS IS" with no warranties, and confers no rights. 
Use of included script samples are subject to the terms specified at 
http://www.microsoft.com/info/cpyright.htm 
Note:  For the benefit of the community-at-large, all responses to this 
message are best directed to the newsgroup/thread from which they 
originated.  
--------------------
> Reply-To: "Stefan" <shogun@steffsworld.ch>
> From: "Stefan" <shogun@steffsworld.ch>
> Subject: Decrypt / Encrypt Session objects
> Date: Fri, 29 Aug 2003 06:52:09 +0200
> Lines: 8
> X-Priority: 3
> X-MSMail-Priority: Normal
> X-Newsreader: Microsoft Outlook Express 6.00.2800.1158
> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
> Message-ID: <eMEzQlebDHA.2588@TK2MSFTNGP09.phx.gbl>
> Newsgroups: microsoft.public.dotnet.framework.aspnet.security
> NNTP-Posting-Host: 157.161.65.14
> Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.phx.gbl
> Xref: cpmsftngxa06.phx.gbl 
microsoft.public.dotnet.framework.aspnet.security:6463
> X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
> 
> Hi!
> I just want to know if it's common to decrypt a Session-Object in a
> ASP.NET application.
> My collegue says that I have not do this because the information is
> stored on the server.
> Any suggestions?
> 
> 
> 

• Previous message: Kevin Kenny: "Dsn.Resolve() fails in ASP.NET"
• In reply to: Stefan: "Decrypt / Encrypt Session objects"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]