Re: [WebDNA] Secure Cookies

This WebDNA talk-list message is from

2009


It keeps the original formatting.
numero = 103878
interpreted = N
texte =
How does hijacking work, and is it an easy thing to do?


On Sun, 25 Oct 2009 21:16:30 -0400
Willi= am DeVaul <wdevaul@gmail.com> wrote:
> It depends upon what you mean. Cookies are plain text >kept on the
> client-side. You might try encrypting before sending to
>a client.
> However,= even an encrypted cookie can be hijacked so
>steps need to be
> taken to prevent that.
>
> = Bill
>
> On Sun, Oct 25, 2009 at 8:27 PM, Stuart Tremain
><webdna@idfk.com.au> wrote:
>= > I think I have asked this before.
>>
>> Can cookies be set as secure using WebDNA= ?
>>
>>
>> Regards
>>
>> Stuart Tremain
>> IDFK Web Devel= opments
>> AUSTRALIA
>> webdna@idfk.com.au
>>
>> ------------------------------= ---------------------------
>> This message is sent to you because you are subscribed
>>to
>&= gt; the mailing list <talk@webdna.us>.
>> To unsubscribe, E-mail to: <talk-l= eave@webdna.us>
>> archives: http://mail.webdna.us/list/talk@webdna.us
>> old archives: http:= //dev.webdna.us/TalkListArchive/
>> Bug Reporting:
>>http://forum.webdna.us/eucabb.html?page=3Dtopi= cs&category=3D288
>>
> ---------------------------------------------------------
> This me= ssage is sent to you because you are subscribed
>to
> the mailing list <talk@webdna.us>.
> To un= subscribe, E-mail to: <talk-leave@webdna.us>
> archives: http://mail.webdna.us/list= /talk@webdna.us
> old archives: http://dev.webdna.us/TalkListArchive/
> Bug Reporting:
>http= ://forum.webdna.us/eucabb.html?page=3Dtopics&category=3D288

=A0=
Associated Messages, from the most recent to the oldest:

    
  1. RE: [WebDNA] Secure Cookies ("Scott @ Itsula" 2020)
  2. Re: [WebDNA] Secure Cookies (christophe.billiottet@webdna.us 2020)
  3. Re: [WebDNA] Secure Cookies (Stuart Tremain 2020)
  4. Re: [WebDNA] Secure Cookies (Brian Harrington 2020)
  5. Re: [WebDNA] Secure Cookies (Stuart Tremain 2020)
  6. RE: [WebDNA] Secure Cookies ("Scott @ Itsula" 2020)
  7. Re: [WebDNA] Secure Cookies (Tom Duke 2020)
  8. RE: [WebDNA] Secure Cookies ("Scott @ Itsula" 2020)
  9. Re: [WebDNA] Secure Cookies (Tom Duke 2020)
  10. Re: [WebDNA] Secure Cookies (christophe.billiottet@webdna.us 2020)
  11. Re: [WebDNA] Secure Cookies (Stuart Tremain 2020)
  12. Re: [WebDNA] Secure Cookies (christophe.billiottet@webdna.us 2020)
  13. Re: [WebDNA] Secure Cookies (Stuart Tremain 2020)
  14. Re: [WebDNA] Secure Cookies (Tom Duke 2020)
  15. RE: [WebDNA] Secure Cookies ("Scott @ Itsula" 2020)
  16. [WebDNA] Secure Cookies - Further reading (Stuart Tremain 2020)
  17. [WebDNA] Secure Cookies (Stuart Tremain 2020)
  18. Re: [WebDNA] Secure cookies (HttpOnly/Secure) ("Dan Strong" 2013)
  19. Re: [WebDNA] Secure cookies (HttpOnly/Secure) (Tom Duke 2013)
  20. Re: [WebDNA] Secure cookies (HttpOnly/Secure) (WebDNA 2013)
  21. [WebDNA] Secure cookies (HttpOnly/Secure) ("Dan Strong" 2013)
  22. Re: [WebDNA] Secure Cookies (Tom Duke 2009)
  23. Re: [WebDNA] Secure Cookies (Tom Duke 2009)
  24. Re: [WebDNA] Secure Cookies (William DeVaul 2009)
  25. Re: [WebDNA] Secure Cookies (Tom Duke 2009)
  26. Re: [WebDNA] Secure Cookies (Frank Nordberg 2009)
  27. Re: [WebDNA] Secure Cookies (Govinda 2009)
  28. Re: [WebDNA] Secure Cookies ("Terry Wilson" 2009)
  29. Re: [WebDNA] Secure Cookies (William DeVaul 2009)
  30. Re: [WebDNA] Secure Cookies (William DeVaul 2009)
  31. Re: [WebDNA] Secure Cookies (Stuart Tremain 2009)
  32. Re: [WebDNA] Secure Cookies (Donovan Brooke 2009)
  33. Re: [WebDNA] Secure Cookies (Stuart Tremain 2009)
  34. Re: [WebDNA] Secure Cookies ("Terry Wilson" 2009)
  35. Re: [WebDNA] Secure Cookies (Stuart Tremain 2009)
  36. Re: [WebDNA] Secure Cookies (William DeVaul 2009)
  37. [WebDNA] Secure Cookies (Stuart Tremain 2009)
How does hijacking work, and is it an easy thing to do?


On Sun, 25 Oct 2009 21:16:30 -0400
Willi= am DeVaul <wdevaul@gmail.com> wrote:
> It depends upon what you mean. Cookies are plain text >kept on the
> client-side. You might try encrypting before sending to
>a client.
> However,= even an encrypted cookie can be hijacked so
>steps need to be
> taken to prevent that.
>
> = Bill
>
> On Sun, Oct 25, 2009 at 8:27 PM, Stuart Tremain
><webdna@idfk.com.au> wrote:
>= > I think I have asked this before.
>>
>> Can cookies be set as secure using WebDNA= ?
>>
>>
>> Regards
>>
>> Stuart Tremain
>> IDFK Web Devel= opments
>> AUSTRALIA
>> webdna@idfk.com.au
>>
>> ------------------------------= ---------------------------
>> This message is sent to you because you are subscribed
>>to
>&= gt; the mailing list <talk@webdna.us>.
>> To unsubscribe, E-mail to: <talk-l= eave@webdna.us>
>> archives: http://mail.webdna.us/list/talk@webdna.us
>> old archives: http:= //dev.webdna.us/TalkListArchive/
>> Bug Reporting:
>>http://forum.webdna.us/eucabb.html?page=3Dtopi= cs&category=3D288
>>
> ---------------------------------------------------------
> This me= ssage is sent to you because you are subscribed
>to
> the mailing list <talk@webdna.us>.
> To un= subscribe, E-mail to: <talk-leave@webdna.us>
> archives: http://mail.webdna.us/list= /talk@webdna.us
> old archives: http://dev.webdna.us/TalkListArchive/
> Bug Reporting:
>http= ://forum.webdna.us/eucabb.html?page=3Dtopics&category=3D288

=A0=
"Terry Wilson"

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

PCS Frames (1997) Frames and WebCat (1997) RE: Emailer prefs in two places ... (1997) WebCatalog-NT?'s (1996) What is this error message? (2006) Secure server question (1997) Re[2]: Wierd problem with 3.08 WIN Version (2000) SSL do I need it?? (1998) [ShowNext] (1997) Problem with CC problem ? (1997) Bugs in IE 6.0 ? (2003) [WebDNA] thisAutonumber? (2011) same bill to and ship to? (1998) [WebDNA] WebDNA restart script (2015) Develop on Mac - Serve on Linux (2002) emailer (1997) FlushDatabase Suggestion (1998) duplicate cart numbers - New P3P Rule (2002) [WebDNA] Anyone have a virtualbox with WebDNA 6.2 installed that they can share? (2015) [WebDNA] maybe silly suggestion? [founditems] (2015)