If you set your cookie without a maximum age, it will not appear in the
directory. It is only held in the browsers memory. This is why
authentication credentials are normally stored using Session Cookies
(cookies without a maximum age).
(*Chris*)
----- Original Message -----
From: guillaume ORIOL <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, June 23, 1999 8:45 AM
Subject: Where are those Cookies?
> i'm working on a Windows NT4 PC and would like to know
> where cookies are stored. (I use both IE4 and Netscape 4.5).
> There's a directory under /WinNT whose name is 'cookies'
> and another in my profile whose name is also 'cookies'
> but i can't find the cookie i set in my servlet.
>
> i also have a security question related to that:
> suppose i copy the cookie from a collegue's PC to my PC,
> and suppose my collegue was authenticated on a server,
> when i request the servlet with my collegue's cookie copied
> on my PC, i will be considered authenticated by the servlet?
> is there something i missed?
>
>
___________________________________________________________________________
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the
body
> of the message "signoff SERVLET-INTEREST".
>
> Archives: http://archives.java.sun.com/archives/servlet-interest.html
> Resources: http://java.sun.com/products/servlet/external-resources.html
> LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
>
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
