SESCOOKIENOSEC (JANUS DEFINE parameter)

From m204wiki
Jump to navigation Jump to search

Send the session cookie 'unsecured'

SESCOOKIENOSEC is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port.

Indicates that the cookie specified by SESCOOKIE will not be sent to the browser as a "secure" cookie. This makes it possible with some browsers in certain situations to use the SESCOOKIE cookie to have a logical session operate over multiple Janus Web Server ports.

Note: It is probably a bad idea to transmit a session cookie on a non-SSL connection, because someone who spies the session cookie can use it to perform trusted logins on the Janus Web Server port (though such a person cannot determine any password associated with the session cookie).

SESCOOKIENOSEC is valid only for WEBSERV ports.

See also

Retrieved from "https://m204wiki.rocketsoftware.com/index.php?title=SESCOOKIENOSEC_(JANUS_DEFINE_parameter)&oldid=84506"