[nycphp-talk] cross server session id
Chris Shiflett
shiflett at php.net
Sun Oct 31 22:05:12 EST 2004
--- Matthew Terenzio <webmaster at localnotion.com> wrote:
> Did anyone know you can read a PHP session id from a JSP page
> running on the same box(and domain), different port.
You mean you can read a cookie from the same server that sets it? :-)
There is no way to restrict a cookie to a specific port, unless that's
part of the Cookie2 spec (which isn't really supported anyway).
Chris
=====
Chris Shiflett - http://shiflett.org/
PHP Security - O'Reilly HTTP Developer's Handbook - Sams
Coming January 2005 http://httphandbook.org/
More information about the talk
mailing list