[thelist] cookies

[Joshua OIson]

cookies are differentiated by domain.  The browser sends the cookie with the
page request when the requested page matches the domain of the cookie.  So,
if the domain evolt.org sets a cookie, then only evolt.org can "read" the
cookie.

Remember, the computer doing the browsing can always read the cookie!  From
there anything can happen.

there might be some hacks that I don't know of, but generally they're ok to
use.

HTH,
-joshua

----- Original Message -----
From: "sarah" <disaster7 at yahoo.com>
Subject: [thelist] cookies


> Can anyone read a cookie that was set by someone else?
>
> Say I have a JSP site that makes a cookie. Can some
> other site (not using JSP) read the cookie made by the
> JSP site?
>
>
> TIA,
> Sarah