Re: Store SqlConnection in SessionVariable
From: Andrew Banks (banksy_at_nojunkblueyonder.co.uk)
Date: 04/16/04
- Next message: Patrice: "Re: Store SqlConnection in SessionVariable"
- Previous message: Dinçer: "Re: Question about IIS"
- In reply to: Rolf Gossen: "Store SqlConnection in SessionVariable"
- Next in thread: Patrice: "Re: Store SqlConnection in SessionVariable"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 16 Apr 2004 11:47:56 GMT
Can't sessions be hijacked and therefore a user could potentially have
access to this data?
"Rolf Gossen" <rolf.gossen@gmx.de> wrote in message
news:d30e195.0404160340.4df85abd@posting.google.com...
> Hello NG,
>
> sometimes I read: "Never store an SqlClient.SqlConnection in a Session
> Variable." But noone explains why. Is there anyone who can briefly
> summarize the main problems about this approach.
>
> Thanks in advance
> Rolf
- Next message: Patrice: "Re: Store SqlConnection in SessionVariable"
- Previous message: Dinçer: "Re: Question about IIS"
- In reply to: Rolf Gossen: "Store SqlConnection in SessionVariable"
- Next in thread: Patrice: "Re: Store SqlConnection in SessionVariable"
- Messages sorted by: [ date ] [ thread ]
Loading
