Sure thing ;-)
On 8/30/07, MrBuzzy <[EMAIL PROTECTED]> wrote:
>
>
> Taco, you should also check your vars (just in case)
> http://code.google.com/p/var-scope-checker-fb/downloads/list
>
> It's worth doing before or while you check the isp stuff.
>
> On 8/30/07, David Heacock <[EMAIL PROTECTED]> wr
Taco, you should also check your vars (just in case)
http://code.google.com/p/var-scope-checker-fb/downloads/list
It's worth doing before or while you check the isp stuff.
On 8/30/07, David Heacock <[EMAIL PROTECTED]> wrote:
>
> We had the same problem last week with a client. Several people wer
We had the same problem last week with a client. Several people were
sharing sessions. It turned out to be the proxy settings on their
router.
Cheers
David Heacock
On Aug 30, 9:48 am, "Taco Fleur" <[EMAIL PROTECTED]> wrote:
> Hello all,
>
> I was wondering if someone has seen this before. One
rlie
_
From: cfaussie@googlegroups.com [mailto:[EMAIL PROTECTED] On Behalf
Of Taco Fleur
Sent: Wednesday, August 29, 2007 8:04 PM
To: cfaussie@googlegroups.com
Subject: [cfaussie] Re: ColdFusion sessions playing up? showing info that
belongs to others?
It's nothing like that
Isn't it the case that even if you make something idiot proof, someone
will build a better idiot.
Barry Beattie wrote:
> I've been critisied in the past by indiscriminately adding NO-CACHE
> headers to my pages but the way I see it, you can make thins
> "fool-proof" but you can't make things "id
I've been critisied in the past by indiscriminately adding NO-CACHE
headers to my pages but the way I see it, you can make thins
"fool-proof" but you can't make things "idiot-proof"
you were lucky you got feedback to do something about it. it'd be a
shame if the feedback came from the bankruptcy
Thanks, that does make me feel better. ;-)
On 8/30/07, Haikal Saadh <[EMAIL PROTECTED]> wrote:
>
>
> I don't see why *you* should have to hit your urls with an ugly stick
> because the ISP is misbehaving. I don't see why you (and other app
> developers) have to spend 10 times the CPU time serving
I don't see why *you* should have to hit your urls with an ugly stick
because the ISP is misbehaving. I don't see why you (and other app
developers) have to spend 10 times the CPU time serving SSL just because
of one misconfigured ISP.
You didn't think of this because this is something that sh
t; *Sent:* Thursday, 30 August 2007 10:15 AM
> *To:* cfaussie@googlegroups.com
> *Subject:* [cfaussie] Re: ColdFusion sessions playing up? showing info
> that belongs to others?
>
>
> Yes, it sounds like it is a content caching issue, as both users are with
> iprimus...
>
Yes, I've already emailed them asking to explain.
I took the soft approach, as there might be something I missed?
This raises the questions: should everyone know to append a unique string to
pages behind a sign in? Should we now be putting pages that require sign in
behind SSL, even though the data
: ColdFusion sessions playing up? showing info that
belongs to others?
Yes, it sounds like it is a content caching issue, as both users are with
iprimus...
Its pretty serious though... Should they not play by the rules and look at last
modified dates etc?
thanks guys.
On 8/30/07
Sent: Thursday, 30 August 2007 10:15 AM
To: cfaussie@googlegroups.com
Subject: [cfaussie] Re: ColdFusion sessions playing up? showing info that
belongs to others?
Yes, it sounds like it is a content caching issue, as both users are with
iprimus...
Its pretty serious though... Should they not
By rights, they should. But through either malice or stupidity, sounds
like like they're not.
I wonder if this is something a phone call could resolve.
And if an ISP was exposing my private pages to someone else, that sounds
like grounds for a lawsuit...
Taco Fleur wrote:
> Yes, it sounds lik
Yes, it sounds like it is a content caching issue, as both users are with
iprimus...
Its pretty serious though... Should they not play by the rules and look at
last modified dates etc?
thanks guys.
On 8/30/07, Haikal Saadh <[EMAIL PROTECTED]> wrote:
>
>
> The aggressive-content-caching proxy is
The aggressive-content-caching proxy is a possible explanation for this.
Maybe try adding No-Cache headers to your responses?
Taco Fleur wrote:
> It's nothing like that. We don't append cftoken to the url.
> The user signs in, sees the correct information, then goes to another
> page and sees t
Hi David,
yes, this is something that I will check thanks.
On 8/30/07, David Harris <[EMAIL PROTECTED]> wrote:
>
>
> Hi Taco,
>
> I have seen this before, and often it's a proxy sitting between the CF
> server and the users.
>
> - user one logs in and views a page
> -- the proxy caches it
> - us
It's nothing like that. We don't append cftoken to the url.
The user signs in, sees the correct information, then goes to another page
and sees the information from another user they don't know (so they say).
I have not been able to replicate this myself.
On 8/30/07, skateboard.com.au <[EMAIL PR
Hi Taco,
I had this happen years ago, the cause was that the two users were using
the same isp that was
heavily caching content.. the solution back then was to ensure that
every url was unique.. and/or
pass session token in the url.
Cheers,
Adam
_
From: Taco Fleur [mailto:[
Hi Taco,
I have seen this before, and often it's a proxy sitting between the CF
server and the users.
- user one logs in and views a page
-- the proxy caches it
- user two logs in and views the same page
-- the proxy says "I've got this one, don't bother the server, use
this one"
and then shows
I had this happen where I was a bit sloppy and left links with cftoken
url variables in content that was cached/shared.
-Original Message-
From: "Taco Fleur" <[EMAIL PROTECTED]>
To: cfaussie@googlegroups.com
Date: Thu, 30 Aug 2007 09:48:16 +1000
Subject: [cfaussie] ColdFusion sessions
20 matches
Mail list logo
