> 1) Sessions are not created unless logged in. That's not true. A session id is assigned the moment you hit the site. Set your browser to prompt before accepting cookies and you'll see the JSESSIONID cookie being sent before you login.
This is done to support anonymous users, and still manage the "anonymous" user's session. - Chris -----Original Message----- From: Caldarale, Charles R [mailto:[EMAIL PROTECTED] Sent: Friday, December 01, 2006 7:14 PM To: Tomcat Users List Subject: RE: Web spiders - disabling jsessionid > From: Len Popp [mailto:[EMAIL PROTECTED] > Subject: Re: Web spiders - disabling jsessionid > > On my site (as on many others) you can browse the site without a > session, but if you want to log in (to add content or to use > personalized settings) you need a session. O.k., now I'm confused. 1) Sessions are not created unless logged in. 2) Bots don't like the session id they're given. >From the above, I have to conclude the bots are logging in, which sounds pretty ambitious, even for Google. If the bots aren't logging in, then they won't have a session, so there's no need to filter out what isn't there. What am I missing? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
