Explain sessions and cookies, PHP Web Programming

Where is the sessions stored?

Sessions are stored in server side & it is accessed by a unique id that is known as the session-id where each user-visitor is assigned when they access your website.

How the session-id is propagated within website?

principally, there are 2 methods either store in a cookie or propagated in the URL.

Leaking out an existing session-id to a third party is very risky if the session is filled with more important information.

There are main two methods of vulnerabilities are,

- When the session-id is carrying in URLs

If an external link from your site, a URL with the id might be stored in the external site’s referrer log.

- Active attacker might listen to network traffic

While the session-id flows over the network & if it is not encrypted an active listener might grab it. The best solution is to implement SSL & make it a must for all the users.

Posted Date: 9/1/2012 12:00:54 AM | Location : United States







Related Discussions:- Explain sessions and cookies, Assignment Help, Ask Question on Explain sessions and cookies, Get Answer, Expert's Help, Explain sessions and cookies Discussions

Write discussion on Explain sessions and cookies
Your posts are moderated
Related Questions
Explain how to submit form without a submit button. We can achieve above task by using JavaScript code linked to an event trigger of any form field and call document.form.submi

Before we can employ the Internet, we need to gain access to it.  This access is attained in one of many ways, which will be discussed in this section. Above all, the Internet is c

Want a professional Mangeto site by an expert developer We want a professional looking site built on Magento. It will be a responsive & adaptive design. Products informati

A Neighbourhood watch  (a community based 'watch your neighbour'  organisation to keep the neighbourhood safe) committee in the Tuggeranong valley  (ACT) has grown to the stage whe

A PHP/eCommerce Expert Needed Description- This is aid with an ecommerce site using Balanced payments API. There is as well certain low level PHP that will need to be done. T

Make lightbox (js) form that captures client information in Zoho We have three websites that have lightbox popups on them. Subsequently 120 seconds on the website the lightbox c

I am mainly looking for a version of a VERY professional site that is very same to a match.com - basically it would match people to jobs and vice verso. It would show percentage

Seeking urgent assistance with loading an ASP.net website We are urgently seeking assistance with loading an ASP.net website installation onto a new server, job will start immed

Question: The best user interface design guidelines are guidelines that given high level and widely applicable principles. A set of such guidelines is as follows: (i) Know

I need WordPress / Woocommerce search customisation My client has a WordPress website by Woocommerce and wants to incorporate custom search functionality The clients' website