I have kind of a general app server question:
I have a servlet that puts a user object into session
-------------
HttpSession session = req.getSession(true);
session.setAttribute("user", user);
-------------
We use this object to check if a visitor has logged into the web site or not
My boss has asked me to increase the timeout of this session to 8 hours !!!
Apart from the obvious security issue, I was wondering about the load on
the server. Is holding too many session at once a common cause of server
failure ?
I can't really give details about the number of users, but assume there
will be a few hundred at any one time.
The hardware specs of the app server are about mid range.
thanks
