[thelist] session and/or cookie persistence across an ssl and non-ssl connection
Scott Dexter
sgd at ti3.com
Thu Jan 17 16:17:41 CST 2002
>
> I will have to do some testing I suppose. The problem may be
> that the ssl
> and non-ssl sites are both separate "applications" as far as IIS is
That is exactly the problem. --And going to be very difficult to get
around (if at all) and still use the same Session ids (I mean, if it
were easy or possible, it would be a *huge* security hole)
Can you make them one application?
sgd
More information about the thelist
mailing list