sercurity issuses of transmitting seesion id

This is a multi-part message in MIME format.

------=_NextPart_000_0253_01C44A4F.F3B650A0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Hi,

I have read that some security experts question the use of session ids over=
the internet.

Is this really a practical problem?

Thanks,
regards
Paul


------=_NextPart_000_0253_01C44A4F.F3B650A0
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2600.0" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hi,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>I have read that some security experts que=
stion the
use of session ids over the internet.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Is this really a practical problem?</FONT>=
</DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Thanks,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2> regards </FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Paul</FONT></DIV>
<DIV> </DIV></BODY></HTML>

------=_NextPart_000_0253_01C44A4F.F3B650A0--
Paul Gimpelj [ Fr, 04 Juni 2004 22:21 ] [ ID #141839 ]

Re: sercurity issuses of transmitting seesion id

Thanks chris,
nice .

regards,
paul.

----- Original Message -----
From: "Chris" <chris [at] interspire.com>
To: "'Paul Gimpelj'" <pgimpelj [at] sympatico.ca>; "'pgsql-php'"
<pgsql-php [at] postgresql.org>
Sent: Sunday, June 06, 2004 8:32 PM
Subject: RE: [PHP] sercurity issuses of transmitting seesion id


> Hi Paul,
>
> If you only use session-id's for authentication then it'll be a problem.
>
> http://www.sitepoint.com/blog-post-view.php?id=156260
>
> has a bit more info about it and also some links to other articles that
> talk about session stuff..
>
> HTH.
>
> ------------
> Chris Smith
>
> Suite 30, 45-51 Huntley St, Alexandria, NSW 2015 Australia
>
> Ph: +61 2 9517 2505
> Fx: +61 2 9517 1915
>
> email: info [at] interspire.com
> web: www.interspire.com
>
>
>
> -----Original Message-----
> From: pgsql-php-owner [at] postgresql.org
> [mailto:pgsql-php-owner [at] postgresql.org] On Behalf Of Paul Gimpelj
> Sent: Saturday, June 05, 2004 6:21 AM
> To: pgsql-php
> Subject: [PHP] sercurity issuses of transmitting seesion id
>
>
> Hi,
>
> I have read that some security experts question the use of session ids
> over the internet.
>
> Is this really a practical problem?
>
> Thanks,
> regards
> Paul
>


---------------------------(end of broadcast)---------------------------
TIP 4: Don't 'kill -9' the postmaster
Paul Gimpelj [ Mo, 07 Juni 2004 05:01 ] [ ID #141840 ]
Datenbanken » gmane.comp.db.postgresql.php » sercurity issuses of transmitting seesion id

Vorheriges Thema: Hi!, and a Question
Nächstes Thema: SSL PostgreSQL and PHP

[ Startseite ] [ Administrator ] [ Suche ] [ Hinweise ] [ Impressum ]

Powered by FudForum