cocoon-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Pier Fumagalli <p...@betaversion.org>
Subject Re: [jetty-discuss] Microsoft IE7 compromise of session security
Date Sun, 02 Oct 2005 22:53:38 GMT
On 2 Oct 2005, at 23:17, Sylvain Wallez wrote:
> Pier Fumagalli wrote:
>
>> I found this on the Jetty list, and thought it was relevant as in  
>> the  examples we tend to encode the continuation ID into the URL...
>>
>> This is f***ing scary!!!
>
> Yep. And doesn't the same already happen with the Google toolbar,  
> which certainly send the URL to Google to have the page rank? Same  
> applies also to the PageRank Firefox extension...

I don't know the Google Toolbar (I don't use it), but methinks that  
at least our samples should show another way, and explain why  
continuation IDs are not encoded in the URI...

     Pier


Mime
View raw message