cookies from other websites

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
fluffypancakes
Forum Newbie
Posts: 1
Joined: Sat Jul 12, 2008 6:44 pm

cookies from other websites

Post by fluffypancakes »

hi all!

i'm not really a developer, so this question might make you laugh. here it comes: is there any way of reading the values of the client's cookies that he/she recieved from OTHER web-sites, provided i know the exact name of the cookie, url, etc.

thanks!
User avatar
Jasheppard
Forum Newbie
Posts: 24
Joined: Tue Jun 17, 2008 11:44 pm

Re: cookies from other websites

Post by Jasheppard »

i don't think you can, its a matter of security. if it is possible then other sites can read other sites cookies which may contain private data.
alex.barylski
DevNet Evangelist
Posts: 6267
Joined: Tue Dec 21, 2004 5:00 pm
Location: Winnipeg

Re: cookies from other websites

Post by alex.barylski »

No. Like it's been said already that would pose a serious security risk. If I knew the URL and cookie name, path, etc...to my banks website...I could easily find cookies of other people and steal their money. :P

If life were only that easy I wouldn't be working right now, but everyone else would be. :P

You can access cookies in different folders inside the same domain but it's impossible outside of the domain.

What are you trying to do? If we knew more we might be able to offer an alternative solution?
Post Reply