[thelist] session and/or cookie persistence across an ssl and non-ssl connection
Chris Blessing
webguy at mail.rit.edu
Thu Jan 17 16:23:50 CST 2002
I wouldn't mind making them the same application, but I'm unsure as to how
to go about doing it. Could you give me a brief explanation?
Chris Blessing
webguy at mail.rit.edu
http://www.330i.net
-----Original Message-----
From: thelist-admin at lists.evolt.org
[mailto:thelist-admin at lists.evolt.org]On Behalf Of Scott Dexter
Sent: Thursday, January 17, 2002 5:19 PM
To: thelist at lists.evolt.org
Subject: RE: [thelist] session and/or cookie persistence across an ssl
and non-ssl connection
>
> I will have to do some testing I suppose. The problem may be
> that the ssl
> and non-ssl sites are both separate "applications" as far as IIS is
That is exactly the problem. --And going to be very difficult to get
around (if at all) and still use the same Session ids (I mean, if it
were easy or possible, it would be a *huge* security hole)
Can you make them one application?
sgd
--
For unsubscribe and other options, including
the Tip Harvester and archive of TheList go to:
http://lists.evolt.org Workers of the Web, evolt !
More information about the thelist
mailing list