tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Walker Joe <>
Subject Session Spoofing
Date Mon, 02 Oct 2000 13:24:16 GMT


Simple question - I'm attempting to ensure our tomcat servers are as secure
as possible, and it occurs to me that we are very reliant on the Tomcat
session cookie not being predictable.

Where should I look to check, and is this an area that has been covered



Legal Disclaimer:-

Please be aware that messages sent over
the Internet may not be secure and should
not be seen as forming a legally binding
contract unless otherwise stated.

View raw message