SESCOOKIENOSEC (JANUS DEFINE parameter): Difference between revisions
m (1 revision) |
mNo edit summary |
||
| Line 1: | Line 1: | ||
{{DISPLAYTITLE:SESCOOKIENOSEC}} | {{DISPLAYTITLE:SESCOOKIENOSEC}} | ||
<span class="pageSubtitle"><section begin="desc" /><section end="desc" /></span> | <span class="pageSubtitle"><section begin="desc" />Send the session cookie 'unsecured'.<section end="desc" /></span> | ||
SESCOOKIENOSEC is a parameter on [[JANUS DEFINE]], which defines and sets characteristics of a Janus port. See the [[JANUS DEFINE#parmlist|List of JANUS DEFINE parameters]]. | SESCOOKIENOSEC is a parameter on [[JANUS DEFINE]], which defines and sets characteristics of a Janus port. See the [[JANUS DEFINE#parmlist|List of JANUS DEFINE parameters]]. | ||
Indicates that the cookie specified by SESCOOKIE will not be sent to the browser as a "secure" cookie. This makes it possible with some browsers in certain situations to use the SESCOOKIE | Indicates that the cookie specified by SESCOOKIE will not be sent to the browser as a "secure" cookie. This makes it possible with some browsers in certain situations to use the [[SESCOOKIE]] cookie to have a logical session operate over multiple ''[[Janus Web Server]]'' ports.<blockquote> It is probably a bad idea to transmit a session cookie on a non-SSL connection, because someone who spies the session cookie can use it to perform trusted logins on the ''[[Janus Web Server]]'' port (though such a person cannot determine any password associated with the session cookie).</blockquote> | ||
The SESCOOKIENOSEC parameter is only available in ''[[Sirius Mods]]'' Version 6.0 and later. | The SESCOOKIENOSEC parameter is only available in ''[[Sirius Mods]]'' Version 6.0 and later. | ||
Revision as of 14:56, 14 March 2011
<section begin="desc" />Send the session cookie 'unsecured'.<section end="desc" />
SESCOOKIENOSEC is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port. See the List of JANUS DEFINE parameters.
Indicates that the cookie specified by SESCOOKIE will not be sent to the browser as a "secure" cookie. This makes it possible with some browsers in certain situations to use the SESCOOKIE cookie to have a logical session operate over multiple Janus Web Server ports.
It is probably a bad idea to transmit a session cookie on a non-SSL connection, because someone who spies the session cookie can use it to perform trusted logins on the Janus Web Server port (though such a person cannot determine any password associated with the session cookie).
The SESCOOKIENOSEC parameter is only available in Sirius Mods Version 6.0 and later.
SESCOOKIENOSEC is valid only for WEBSERV ports.
References
See: List of Janus commands | List of JANUS DEFINE parameters.