RE: [PHP] Why do Sessions use Cookies? — PHP

You are here: RE: [PHP] Why do Sessions use Cookies? « PHP « IT news, forums, messages

Posted by Ahmed Saad on 12/07/05 13:51

Hi Michael,

On 12/3/05, Michael B Allen <mba2000@ioplex.com> wrote:
> Why do sessions use cookies?

'cause HTTP is a "stateless" protocol ... check
Wikiepedia on HTTP Cookies at http://en.wikipedia.org/wiki/HTTP_cookies
and RFC 2109 http://www.cse.ohio-state.edu/cgi-bin/rfc/rfc2109.html

such "statelessness" is the source of one of the major attack types in
Web applications: Session Hijacking... Chris has more to say here
http://shiflett.org/articles/security-corner-aug2004 (hello Chris :)

>Isn't a session just a container associated
> with the user's socket

No it's not, 'cause if so, the clien has to keep a socket open to the
server during the "whole" session... statelessness has design benefits
...

Regards,
Ahmed

Navigation:

Next in forum: RE: [PHP] Security question
Prev in forum: RE: [PHP] What software do you use for writing PHP?
Thread view: RE: [PHP] Why do Sessions use Cookies?

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация