Re: Session Cookie over SSL
Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance
- From: Göran Andersson <guffa@xxxxxxxxx>
- Date: Sat, 29 Apr 2006 19:47:15 +0200
Vikas wrote:
Hi
I am using .Net v1.1
Is there any way to send the session cookie ASP.Net_SessionId Over SSL.
Thanks in advance.
Vikas
No, you can't access cookies between SSL and non-SSL pages. A web site
under SSL is a completely separate web site from the non-SSL of the same
domain. It uses a different port, and even a different protocol.
.
Relevant Pages
- RE: Pen testing SSL VPN appliances?
... most of these at their core are web applications that do SSL port ... forwarding...So any standard web application security auditing tools and ... techniques are relevant...Commercial tools like SpiDynamics Web Inspect, ... a session cookie only, or persistent? ...
(Pen-Test) - Re: Is PHP session safe?
... the client and the server can intercept the data and use it for whatever ... packet will follow, the most likely places to intercept the packets is ... But then that's why SSL was invented. ... I could also guess a 8K-bit session cookie ...
(comp.lang.php) - Advice on when to use SSL? esp. Session ID security
... I'm just trying to assess when/how much to use SSL encryption on an ASP.NET ... they could possibly forge a session cookie after the ... user logs on and returns to a standard HTTP connection. ... HTTPS for the login page ... ...
(microsoft.public.dotnet.framework.aspnet.security) - Re: Forms Authentication and requireSSL, whats the recommended best practice
... Since the Auth cookie is only passed when I'm ... under SSL, what about the Session cookie. ... Am Imissing something?? ...
(microsoft.public.dotnet.framework.aspnet.security) |
|
