tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Leon Rosenberg" <rosenberg.l...@googlemail.com>
Subject Re: Web spiders - disabling jsessionid
Date Fri, 01 Dec 2006 21:55:33 GMT
On 12/1/06, Caldarale, Charles R <Chuck.Caldarale@unisys.com> wrote:
> > From: Len Popp [mailto:len.popp@gmail.com]
> > Subject: Re: Web spiders - disabling jsessionid
> >
> > On my site (as on many others) you can browse the site without a
> > session, but if you want to log in (to add content or to use
> > personalized settings) you need a session.
>
> O.k., now I'm confused.
>
> 1) Sessions are not created unless logged in.
>
> 2) Bots don't like the session id they're given.
>
> From the above, I have to conclude the bots are logging in, which sounds
> pretty ambitious, even for Google.  If the bots aren't logging in, then
> they won't have a session, so there's no need to filter out what isn't
> there.

It's completely OT, but once a customer of mine has placed a
direct-login link to the public accessible test-system for the newest
project on a crawled site, so that google not only logged in, but also
deleted about 400 entries from the cms.


Everything imaginable happens somewhere...

regards
Leon

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message