Tuesday, October 16, 2007

Session vs Cookies?



 Browser needs Cookies Enabled? Can User Edit Information?

Information Lasts Between Browser Sessions?

(Leaving site and coming back) 

Information Location 
Cookies
 Yes Yes, easily
 Yes User's Browser
Sessions
 No
 No*  No Server, except for session ID
*Users can not modify the information contained in sessions but others can steal session ids and impersonate victims.
Posted by at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)