[prev in list] [next in list] [prev in thread] [next in thread] 

List:       horde
Subject:    Re: [horde] hidden cookies?
From:       Jon Parise <jon () horde ! org>
Date:       2001-12-04 18:48:21
[Download RAW message or body]

On Tue, Dec 04, 2001 at 01:36:29PM -0500, Tim Jones wrote:

> In exploring Horde's session-authentication scheme, I've been unable to 
> figure out where Horde stores its session ID cookie on the client's 
> computer. For instance, when I log in to access my email, my browser will 
> alert me that my mail server is sending me a cookie called "HordeSession"; 
> but afterwards, I can find no cookie of that name on my hard drive. (ie, in 
> Netscape's "cookies.txt" or MSIE's "/windows/cookies/") Can anyone explain 
> to me how my computer is then able to authenticate itself to the Horde 
> server without appearing to store the HordeSession cookie?
 
I don't remember how phplib works, but it might be possible that
Netscape and Internet Explorer don't stored session cookies in
their cookie cache.  Session cookies are those cookies that only
exist for the length of the browser session, so they can exist in
the process's memory space and don't need to be written to disk.

Session cookies have their expiration time set to zero.

-- 
Jon Parise (jon@csh.rit.edu)  .  Information Technology (2001)
http://www.csh.rit.edu/~jon/  :  Computer Science House Member

-- 
Horde mailing list: http://horde.org/horde/
Frequently Asked Questions: http://horde.org/faq/
To unsubscribe, mail: horde-unsubscribe@lists.horde.org

[prev in list] [next in list] [prev in thread] [next in thread]