Becuase using Ajax with a web Application, it's easy for Hacker to hack the Session obejct.
AJAX uses plain old HTTP, so it's as easy or hard to secure as all other web traffic. Hacking the session would at the least involve duplicating the session ID, which should be a cryptographic hash of some kind. That mechanism is used by just about all web servers, and generally considered to be secure enough. So can you explain to us why you think that with AJAX it is easy to hack a session?
[ November 08, 2006: Message edited by: Ulf Dittmer ]