[thelist] CFToken, Cookies & Client Management

Frank framar at interlog.com
Wed May 10 19:23:53 2000

Previous message: [thelist] delayed tip
Next message: [thelist] CFToken, Cookies & Client Management
Return to the message index sorted by: [ date ] [ thread ] [ subject ] [ author ]

If I've got this right, CF uses two things to keep state: Cookies, or 
URLTokens. Now, If the client uses cookies, I can use them, if not, I 
can use URLTokens. Each has a downside. Many people surf with cookies 
off (I do), but with the use of URLTokens, the CFID and CFToken is 
visible in the browser's location bar; anyone could bookmark a user's 
login and pass, if they are used for security purposes.

I'm both a security and privacy freak. Is there another way of 
passing the ID & Token with no cookies, and no visible URL
-- 


Frank Marion                      Loofah Communications
frank@loofahcom.com               http://www.loofahcom.com

Previous message: [thelist] delayed tip
Next message: [thelist] CFToken, Cookies & Client Management
Return to the message index sorted by: [ date ] [ thread ] [ subject ] [ author ]