SESCOOKIENOSEC (JANUS DEFINE parameter): Difference between revisions
mNo edit summary |
m (moved SESCOOKIENOSEC to SESCOOKIENOSEC (JANUS DEFINE parameter)) |
(No difference)
|
Revision as of 23:29, 6 December 2011
<section begin="desc" />Send the session cookie 'unsecured'.<section end="desc" />
SESCOOKIENOSEC is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port. See the List of JANUS DEFINE parameters.
Indicates that the cookie specified by SESCOOKIE will not be sent to the browser as a "secure" cookie. This makes it possible with some browsers in certain situations to use the SESCOOKIE cookie to have a logical session operate over multiple Janus Web Server ports.
It is probably a bad idea to transmit a session cookie on a non-SSL connection, because someone who spies the session cookie can use it to perform trusted logins on the Janus Web Server port (though such a person cannot determine any password associated with the session cookie).
The SESCOOKIENOSEC parameter is only available in Sirius Mods Version 6.0 and later.
SESCOOKIENOSEC is valid only for WEBSERV ports.
References
See: List of Janus commands | List of JANUS DEFINE parameters.