cookie test help needed
From: Stephanie Stowe (stowe_at_whackthisvsac.org)
Date: 03/10/04
- Next message: Brad Simon: "RE: IIS/.net framework installation problem : Parser Error Message: Required permissions cannot be acquired"
- Previous message: Brad Simon: "RE: Is it possible to call another ASP page without opening it?"
- Next in thread: Brad Simon: "RE: cookie test help needed"
- Reply: Brad Simon: "RE: cookie test help needed"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 10 Mar 2004 14:33:38 -0500
Hi. I read in some helpful publication
"If a cookie created by a page on catalog.acme.com sets its path attribute
to "/" and its domain attrinute to "acme.com", that cookie is available to
all web pages on catalog.acme.com or to any other server." (JavaScript The
Definitive Guide" O'Reilly)
This is exactly what I am trying to acheive. So I set about to test it.
I have a test server on my network. I went into my host file and pointed its
IP to stephie.com. I put up a little cookie write and read test on the
server. I ran the code with the machine name in the URL.
<machine name/CookieYesy/default.asp
sets the cookie then redirects to readcookie.asp.
The cookie is successfully written and read. The write code is:
Response.Cookies("MyID") = 123456
'Response.Cookies("MyID").Domain = "stephie.com"
Response.Redirect "readcookie.asp"
note that the line that sets the domain is commented out since I have not
gotten there yet. Just trying to write and read a cookie.
The readcookie.asp is:
<%
dim tst, tstdomain
tst = cstr(Request.Cookies("MyID"))
%>
<HTML>
<HEAD>
<META NAME="GENERATOR" Content="Microsoft Visual Studio 6.0">
</HEAD>
<BODY>
<P>
<%
Response.Write "Cookie is: " & tst & "<BR>"
%>
</P>
</BODY>
</HTML>
When I run this by
http:// the write and read works great. When I do
http://stephie.com/CookieTest/default.asp
the code is run, the redirect occurs, but either the write or the read is
Can anyone help me with Cookies 101? I have not even gotten to the point of
Thanks!!
S
failing. The asp files are in teh same dir. I cannot see why this would be
happening.
trying to read the cookie from the other machine I am going to set up on
plonk.stephie.com!
Relevant Pages
... I know roughly what an .htaccess file is and I have access to more than this on my own server, but not more on commercial servers that host various sites I have made or maintain. ... The successful login routine sets the cookie by testing to see if the password the user has entered matches the one in your database for that user. ... For pages that can be accessed by multiple groups, your authorize function could be passed a comma-delimited list of allowable groups for that page. ... // Authorizes user based on group, redirects if necessary. ...
(alt.php)
... [CallerId = AutomaticUpdates] ... cookie, reporting URL = ... the server with hr = 80072efd. ...
(microsoft.public.windowsupdate)
... I have few questions I hope someone can clear up for me with the cookie ... private web server. ... It also says this about the secret key: ... Second, would be an example of the "Session ID" or more general, what is an ...
(comp.security.misc)
... You are misreading the script fragment that you quoted. ... What that is intended to do is fetch an image from a server under your own ... and reacting when it sees a new cookie. ... But this require interaction of victim, ...
(Pen-Test)
... What leads you to a conclusion that this problem is an ISA server related? ... We try to access a certain site which sets cookies by sending cookie ... 2.The conclusion is that when Cookie header is sent from the server to ...
(microsoft.public.isa)
