Lists

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: Session id generation - how is it done?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Session id generation - how is it done?

Subject: Re: Session id generation - how is it done?
From: Jon Nolan <email@hidden>
Date: Thu, 21 Apr 2011 09:27:21 -0600
Organization: Loch Garman

Thanks Chuck.  Exactly what I need.

On 4/21/11 8:48 AM, Chuck Hill wrote:

It is a securely hashed GUID.  It contains no session or user information.  It is a hash code to look up the session on the server.

Chuck


On Apr 21, 2011, at 6:09 AM, Jon Nolan wrote:

I don't have the source handy at the moment and I need some basic info on how a session id is created for a security analysis (you know the drill, is it unique, is it resistant to reverse engineering, etc.)

If you're in the know and wouldn't mind, please reply with a quick sentence or two.

Thanks,
Jon


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden



References:  
  >Session id generation - how is it done? (From: Jon Nolan <email@hidden>)
  >Re: Session id generation - how is it done? (From: Chuck Hill <email@hidden>)




Prev by Date:
Re: isEntityDeletable being cached in D2WContext in ERMODListPage

Next by Date:
Re: Session EC Exception

Previous by thread:
Re: Session id generation - how is it done?

Next by thread:
Enums with WOXMLDecoder

Index(es):

Date
Thread