Using cookies doesn't increase your security. It only makes it slightly
harder to hack (since the hacker would need to be familar with cookie
formats).
In either case, cookies or url, encrypting the information is a good idea.
If you have some cpu cycles to spare.
On Thu, 25 Nov 1999, jon * wrote:
> on 11/25/99 9:45 AM, David Medinets <[EMAIL PROTECTED]> wrote:
>
> > You are correct. And that is one more reason to only use cookies to save
> > session tokens instead of using the URL.
>
> What are you talking about? If someone is hacking your site, it won't matter
> if it is with a cookie or a token in the URL. Putting it in a cookie doesn't
> make anything more secure.
>
> -jon
>
> ___________________________________________________________________________
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff SERVLET-INTEREST".
>
> Archives: http://archives.java.sun.com/archives/servlet-interest.html
> Resources: http://java.sun.com/products/servlet/external-resources.html
> LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
>
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
