Win a copy of Kotlin in Action this week in the Kotlin forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Session Hijacking?  RSS feed

 
Daniel Prene
Ranch Hand
Posts: 241
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
How difficult is it for a third party to hijack a client's session? With out-of-the-box asp and php it is startlingly easy, but what about jsp? What does the client know about the session? I'm starting an online community and want it to be secure, and figured this place would be good for advice.

Thanks in advance.
-D.P.
[ October 16, 2005: Message edited by: Bear Bibeault ]
 
Chetan Parekh
Ranch Hand
Posts: 3640
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I guess it is matter of how secure is the application server that you are using, and not JSP.
 
Ben Souther
Sheriff
Posts: 13411
Firefox Browser Redhat VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I don't think it is startlingly easy in PHP or any language if the app is properly deployed under SSL.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!