Cookies vs. what?
Moderator: General Moderators
Cookies vs. what?
Since there is some lack of security using cookies, what should/could be used instead?
- jayshields
- DevNet Resident
- Posts: 1912
- Joined: Mon Aug 22, 2005 12:11 pm
- Location: Leeds/Manchester, England
Re: Cookies vs. what?
Depends what you're using cookies for.
Re: Cookies vs. what?
Just some simple login-required pages (with some minor access levels).
- jayshields
- DevNet Resident
- Posts: 1912
- Joined: Mon Aug 22, 2005 12:11 pm
- Location: Leeds/Manchester, England
Re: Cookies vs. what?
Try sessions (with cookie use diasbled).
Re: Cookies vs. what?
Re: Cookies vs. what?
Oh, thanks astions - forgot about that category.
jay: How should I use such as "remember me"/"log me in automaticly" with sessions?
jay: How should I use such as "remember me"/"log me in automaticly" with sessions?
- jayshields
- DevNet Resident
- Posts: 1912
- Joined: Mon Aug 22, 2005 12:11 pm
- Location: Leeds/Manchester, England
Re: Cookies vs. what?
You can't do "remember me" functions properly without using cookies. You could rely on an IP address but they're not the best idea since they can be spoofed easily.
- kaisellgren
- DevNet Resident
- Posts: 1675
- Joined: Sat Jan 07, 2006 5:52 am
- Location: Lahti, Finland.
Re: Cookies vs. what?
Cookies were created so that we can achieve this "remember me" effect. If you just need a temporary session, you could store the session in the URI. If you need a "permanent" session, then you should just use cookies as that is the thing they were ultimately created for. In the future, we will have client-side database systems as proposed in HTML 5 draft, so, we will see what we can do with that.
Can I ask you what kind of lack of security cookies have or what are you trying to achieve? Usually security issues come from improper handling of tools/features rather than them lacking of security.
Can I ask you what kind of lack of security cookies have or what are you trying to achieve? Usually security issues come from improper handling of tools/features rather than them lacking of security.
Re: Cookies vs. what?
Take a look at
viewtopic.php?f=34&t=69781
viewtopic.php?f=34&t=69781
There are 10 types of people in this world, those who understand binary and those who don't
Re: Cookies vs. what?
Nice, thx mate!