Re: Is there a module for getting / setting a Session-ID

2000-08-02 Thread Greg Cope
[EMAIL PROTECTED] wrote: In a message dated 7/30/00 7:33:41 AM Eastern Daylight Time, [EMAIL PROTECTED] writes: And, on top of that, I have emilinated session hijacking (with a Back Button Breaking method). Can you enlighten me ? A security method that will redirect the user

Re: Is there a module for getting / setting a Session-ID

2000-07-30 Thread Greg Cope
[EMAIL PROTECTED] wrote: I have fully implemented URL munging and Cookie support, but SERIOUS troubles start to arise when you start adding the notion of secure sessions. I have done it, but it isn't pretty. Basically, there are three types of pages. Normal, Secure, and Secure (but you

Re: Is there a module for getting / setting a Session-ID

2000-07-30 Thread JoshNarins
In a message dated 7/30/00 7:33:41 AM Eastern Daylight Time, [EMAIL PROTECTED] writes: And, on top of that, I have emilinated session hijacking (with a Back Button Breaking method). Can you enlighten me ? A security method that will redirect the user to a relogin page if, for

Re: Is there a module for getting / setting a Session-ID

2000-07-29 Thread Greg Cope
jeff wrote: The mod_perl eagle book has a good section on saving state information using session ids. And it's not necessarily mod_perl based. Thanks Jeff. I've some code based on parts of the state section - speifically the ideas of URL mungling. Greg -- Jeff Saenz [EMAIL PROTECTED]

Re: Is there a module for getting / setting a Session-ID

2000-07-29 Thread JoshNarins
I have fully implemented URL munging and Cookie support, but SERIOUS troubles start to arise when you start adding the notion of secure sessions. I have done it, but it isn't pretty. Basically, there are three types of pages. Normal, Secure, and Secure (but you don't need a Secure Url Munging).

Is there a module for getting / setting a Session-ID

2000-07-26 Thread Greg Cope
Dear All Is there a (CPAN) module for transparently setting/getting a Session id from a client: i.e. If they are using cookies set and send a Session ID (shortish expiration time) and optionally a User ID (cookie with a long expiration time). If cookies are off then use URL mangling to store a

RE: Is there a module for getting / setting a Session-ID

2000-07-26 Thread Issam W. Alameh
check Apache::ASP http://www.nodeworks.com/asp/ It is so great Issam -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Greg Cope Sent: Wednesday, July 26, 2000 11:12 AM To: Modperl list Subject: Is there a module for getting / setting a Session-ID

Re: Is there a module for getting / setting a Session-ID

2000-07-26 Thread jeff
The mod_perl eagle book has a good section on saving state information using session ids. And it's not necessarily mod_perl based. -- Jeff Saenz [EMAIL PROTECTED]