ganglia

Results 1 to 15 of 24

Thread: Session Hijacing Theory

Thread Tools
Search Thread
- Advanced Search
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

11-07-2007, 02:39 PM #3
Ezekiel

View Profile

View Forum Posts

Registered User
Join Date

Sep 2005

Posts

2,050
Websites mostly use cookies to authenticate users, and PHP sessions simply to ***** users' actions on the site regardless of their login status.

Of course all sites are different, but it would be very dangerous to use PHP sessions as a basis for authentication when the referrer can be logged by any site they click a link to, thus compromising their account.

You'd need a user's cookie(s) to hijack their account, as far as I've seen.

By the way, I moved this to Internet Privacy.

Who needs drugs when you have electrons?

Reply With Quote

Quick Navigation Internet Privacy Top

« Previous Thread | Next Thread »

Similar Threads

Secure Session Control

By SyntaXmasteR in forum Tutorials

Replies: 4
Last Post: 09-03-2007, 10:36 PM
I'm so nasty. Trojan session

By stevef22 in forum Viruses and Trojans

Replies: 1
Last Post: 09-13-2006, 08:21 AM
Question (A theory program)

By Sprato in forum Internet Privacy

Replies: 5
Last Post: 10-01-2005, 01:43 PM

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

All times are GMT -4. The time now is 07:56 PM.

Powered by vBulletin®
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.