But it would be good for things where you have another method of confirmation,
i.e. store your user data encrypted in cookies, but it can only be unlocked by a
valid username/password from the user.
David
Todd Ashworth wrote:
>
> Well .. as someone else mentioned in response to me .. if you could steal
> someone's encrypted cookie .. it wouldn't really matter in the case where
> someone was masquerading as you. Sure, they might not be able to read your
> personal info, but, i some cases, they could still sure pretend to be you
> ...
>
> .Todd
>
> ----- Original Message -----
> From: John Allred <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Tuesday, May 16, 2000 8:33 PM
> Subject: Re: "You have nice cookies .. mind if I have a look?"
>
> > In the page submitted by Todd:
> > "The NY Times said it has rewritten its cookies code with stronger
> > encryption..."
> >
> > Certainly no one on this list would steal anyone's cookies <grin>, but I
> > didn't hear anyone mention the possibility of encrypting one's own
> > cookies to protect their contents. This is possible, isn't it?
> >
> > --John Allred
>
> ------------------------------------------------------------------------------
> Archives: http://www.eGroups.com/list/cf-talk
> To Unsubscribe visit
>http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
>message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
------------------------------------------------------------------------------
Archives: http://www.eGroups.com/list/cf-talk
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.