Marty Hall says in his Core Servlets and Java Server Pages (page 207): Plan ahead: pass URLs that refer to your own site through response.encodeURL or response.encodeRedirectURL, regardless of whether your servlet is using session tracking. So do we always do this in any of our servlet reglardless of anything?
posted 14 years ago
Yes, that was his suggestion. Reason being that, you may not know if your servlet will be among other servlets that use session tracking.
Bosun (SCJP, SCWCD)
So much trouble in the world -- Bob Marley