Explain sessions and cookies, PHP Web Programming

Where is the sessions stored?

Sessions are stored in server side & it is accessed by a unique id that is known as the session-id where each user-visitor is assigned when they access your website.

How the session-id is propagated within website?

principally, there are 2 methods either store in a cookie or propagated in the URL.

Leaking out an existing session-id to a third party is very risky if the session is filled with more important information.

There are main two methods of vulnerabilities are,

- When the session-id is carrying in URLs

If an external link from your site, a URL with the id might be stored in the external site’s referrer log.

- Active attacker might listen to network traffic

While the session-id flows over the network & if it is not encrypted an active listener might grab it. The best solution is to implement SSL & make it a must for all the users.

Posted Date: 9/1/2012 12:00:54 AM | Location : United States







Related Discussions:- Explain sessions and cookies, Assignment Help, Ask Question on Explain sessions and cookies, Get Answer, Expert's Help, Explain sessions and cookies Discussions

Write discussion on Explain sessions and cookies
Your posts are moderated
Related Questions
GeoIP2 installation assistance Can someone help us implement Geoip2 on website? We consume GeoIPlite working as we speak, we at present want to update it. Desired Skills a

Want script/web app for batch managing (adding/removing/ editing) WooCommerce products on multiple WordPress sites Project Description: I want a custom solution like Infinite

Design Corporate Website Webshop selling urban as well as hip-hop inspired t-shirts designs. We have a quick drawings style symbol at the moment as well as would like have that

We want help in Codeignier Script Change Easy Project details as follow- To add three simple modifications for an existing CMS script. The script to alter is a modified version

Need to develop a very innovative, detailed liquor related website for a liquor distribution company. Job description: -Complete design -live stocks integration -social

How the web server interprets PHP and interacts with the client? After installing and configuring PHP, web When PHP is installed, Web server looks for PHP code which is embedde

PHPBB modifications (course type forum) I want to create a different view/organization of the viewForum.php for my phpBB site. To support this change several changes needs to

For storing pages now that a site structure is set up & assets for the Compass site, you'll develop the first page-a home page for the site. As you develop this page, you'll insert

Let us notice at a couple of attributes called CELLSPACING and CELLPADDING. Both are part of the tag. CELLPADDING is the amount of space among the border of the cell

Be sure to include the appropriate DOCTYPE declaration for the form. Use the W3C validator for strict HTML or XHTML or a test validator for HTML5. The code for the seal is availa