Explain sessions and cookies, PHP Web Programming

Where is the sessions stored?

Sessions are stored in server side & it is accessed by a unique id that is known as the session-id where each user-visitor is assigned when they access your website.

How the session-id is propagated within website?

principally, there are 2 methods either store in a cookie or propagated in the URL.

Leaking out an existing session-id to a third party is very risky if the session is filled with more important information.

There are main two methods of vulnerabilities are,

- When the session-id is carrying in URLs

If an external link from your site, a URL with the id might be stored in the external site’s referrer log.

- Active attacker might listen to network traffic

While the session-id flows over the network & if it is not encrypted an active listener might grab it. The best solution is to implement SSL & make it a must for all the users.

Posted Date: 9/1/2012 12:00:54 AM | Location : United States







Related Discussions:- Explain sessions and cookies, Assignment Help, Ask Question on Explain sessions and cookies, Get Answer, Expert's Help, Explain sessions and cookies Discussions

Write discussion on Explain sessions and cookies
Your posts are moderated
Related Questions
I need help to fix Joomla Bugs I have a Joomla site (version 2.5.7) that has some minor issues. Needs fixed ASAP 1. We are feat error message on backend when trying to edit a

Merge a plugin with a Wordpress theme I need to make plugins to work on theme as well I want to be able to use some of the extra plugins on the premium press theme. Desired S

Magento community with Enterprise features on Amazon AWS We are concerned to run Multiple Magento community instances on Amazon AWS to support very high traffic. We as well like

Web programmer to develop 4 web forms in LUA We want to develop 4 forms for a web server that simply take the user input as well as save it to the system. No database or else

A Neighbourhood watch  (a community based 'watch your neighbour'  organisation to keep the neighbourhood safe) committee in the Tuggeranong valley  (ACT) has grown to the stage whe

Drupal commerce payments/checkout solutions A current Drupal commerce website using PayPal as the payment method. Want to combine check out by amazon and sagepay which signifies

We are a social technology establish led by two pioneers in the social technology business in Los Angeles. There are three developers presently working on our project on a stock an

Need help for Social Network Project - Back-End Development We are employed on Social Network project we expect to release soon. This project will be released in Application

These all are attributes of the tag. The following instance explains each of these attributes. TARGET = "_blank

We need help in Likenet Upgrade - Slot machine LikeNet Upgrade - Slot Machine Users is able to gamble their credits A visual/engaging/animated slot machine. Looks merely l