Ask a Question related to ASP.NET Security, Design and Development.
-
Adil Akram #1
ASP Session in SSL
I've developed a shopping cart application in ASP.net, C#. To maintain the
shopping cart session, I've used the session ID, but while it shifts to SSL
pages the session ID changed which is its default behaviour to maintain
security and prevent session stealing.
I've no idea to maintain session in shopping cart with SSL in check out form
because if I do it with cookies the same security problem exist there,
anyone can steal cookie in non SSL pages and can use it at any time in
user's session.
Expert advices are really appreciated.
I'm thankful in advance.
regards,
Adil
[email]adil@nba.com.pk[/email]
Adil Akram Guest
-
#16263 [Com]: session.start() create new empty session file and not resume existing session
ID: 16263 Comment by: pat at burnttech dot com Reported By: kur at natur dot cuni dot cz Status: No Feedback... -
How can I "know" the difference between a session timed out and a session that did session.abort?
Any clues? Thanks for your time. Adam -
#25307 [Ver->Csd]: Crash when session.serialize_handler=wddx & session, post, get vars
ID: 25307 Updated by: sniper@php.net Reported By: cristea at pntcd dot ro -Status: Verified +Status: ... -
#25307 [Ver]: Crash when session.serialize_handler=wddx & session, post, get vars
ID: 25307 User updated by: cristea at pntcd dot ro Reported By: cristea at pntcd dot ro Status: Verified Bug Type: ... -
#25307 [NEW]: Crash when session.serialize_handler=wddx & session, post, get vars
From: cristea at pntcd dot ro Operating system: any PHP version: 4CVS-2003-08-29 (stable) PHP Bug Type: Session related Bug...
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
