Cookies and security

Results 1 to 2 of 2

Thread: Cookies and security

  1. #1
    Join Date
    Dec 1969

    Default Cookies and security

    I have an Login Application set up so that - on logging in - the users&#039 ID is captured in a Cookie:<BR><BR>Response.Cookies("UserID").Expires= 0<BR>Response.Cookies("UserID")=rs("UserID")<BR><B R>I then use a server expression to filter recordsets on other pages, so the user see info relevant only to them. When the user closes their browser the cookie is destroyed. My question - is it possible for the user to alter the cookie and thus view other users information?<BR><BR>Thanks,<BR>Jules

  2. #2
    Bobby Guest

    Default RE: Cookies and security

    Yes they could edit the cookie file within the browser and that&#039s it <BR><BR>i have just read the witch in a section in the ASP in 21 days it said cookies are not secure

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts