[thelist] session and/or cookie persistence across an ssl and non-ssl connection

Scott Dexter sgd at ti3.com
Thu Jan 17 16:17:41 CST 2002


> 
> I will have to do some testing I suppose.  The problem may be 
> that the ssl
> and non-ssl sites are both separate "applications" as far as IIS is

That is exactly the problem. --And going to be very difficult to get
around (if at all) and still use the same Session ids (I mean, if it
were easy or possible, it would be a *huge* security hole)

Can you make them one application?

sgd





More information about the thelist mailing list