Re: Multiple copies of webbrowser control and site logins
From: Brian Cryer (brianc_at_127.0.0.1.activesol.co.uk)
Date: 01/04/05
- Next message: mail_at_brianrice.com: "Re: Does MS aware of this problem?"
- Previous message: chernyshevsky_at_hotmail.com: "Getting Target in NewWindow2"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 4 Jan 2005 08:03:28 -0000
"Joe" <not@home.com> wrote in message
news:41cc30ab$0$16586$cc9e4d1f@news-text.dial.pipex.com...
>
> "Brian Cryer" <brianc@127.0.0.1.activesol.co.uk> wrote in message
> news:1103894296.17406.0@despina.uk.clara.net...
> > "Joe" <not@home.com> wrote in message
> > news:41cb3121$0$19162$cc9e4d1f@news-text.dial.pipex.com...
> > > Hi,
> > >
> > > I have several processes accessing a website, each through a
webbrowser
> > > control. I do not need to login to the site to access any information.
> > >
> > > However, to update data on the site I do. So if I log in to the site
> using
> > > one webbrowser control are all the other instances automatically
logged
> > in?
> >
> > My experience is limited here, but I think that if one is logged in then
> the
> > others won't be - because a separate session will be maintained for
each.
>
> Right. So the "cookies" or whatever else the site downloads to my machine
> once I log in will be for the session rather than for the "browser".
> I suppose I could verify this if I can log into two separate accounts from
> the same machine.
>
> > > Will the admin of the site have available the info that I am running
one
> > > process logged in and several that are not?
> >
> > The only information that the site admin will have (if he/she cares to
> look)
> > will be the site access logs. These will record your IP address, the
> page(s)
> > you requested and a few other bits and bobs. I don't think you would be
> able
> > to glean any session related information from this, so no, I don't
believe
> > it would be possible for the site admin to identify that you have one
> > process logged in and several that are not - at least not from looking
at
> > the logs.
>
> Hmmm. I think from what you say they could find out that the same IP has
> several sessions one logged in several not - of course they can.
> I suppose, given what you said above, if the cookies are for the session
> they couldn't tell whether it was one user with several browsers - one
> logged in, or several users with the same IP and one logged in.
>
> But then when I start a session they access a cookie on my machine to ID
who
> I am (my profile). So there must be a way the browser sends this info to
the
> site.
>
> So to be "safe" I shouild delete cookies from the site before I access it
> from any browser.
>
> Does that sound right?
>
>
> Cheers
Joe,
sorry for the slow reply - just back in the office after the Christmas
break.
Regarding your last point - yes, in theory they could store a cookie and
then use that to work out that all the connections are from a single machine
and not several people using the same IP address. Even if you deleted all
cookies before you started you would have to delete them as you go, or they
could still use the same technique to determine that you are connected
several times.
However, whilst this could be done, I would have thought it quite unlikely
that they would go to this extreme. Personally I wouldn't. Its more likely
to be a problem if the site is badly designed and stores information in
cookies on your pc instead of as part of the session.
Hope you had a good Christmas.
kind regards,
Brian
www.cryer.co.uk/brian
- Next message: mail_at_brianrice.com: "Re: Does MS aware of this problem?"
- Previous message: chernyshevsky_at_hotmail.com: "Getting Target in NewWindow2"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
