Results 1 to 2 of 2
  1. #1
    pravinkumar is offline Member
    Join Date
    May 2010
    Posts
    1
    Rep Power
    0

    Default session hijacking

    In our application we have 3 layers/managers. Each of them having different roles. According to there role Each of them have some different as well as common priveleges.

    But due to same session variable name they can access each others privelegs by session hijacking .
    Please suggest to avoid this session hijacking

  2. #2
    Tolls is offline Moderator
    Join Date
    Apr 2009
    Posts
    11,945
    Rep Power
    19

    Default

    Are you saying they are sharing info in the session?
    That doesn't make any sense. Each session is isolated from the others.

    So you might need to explain in greater detail what you are talking about.

Similar Threads

  1. Replies: 1
    Last Post: 04-21-2009, 11:20 PM
  2. session
    By jhen in forum Java Servlet
    Replies: 5
    Last Post: 03-16-2009, 04:44 PM
  3. Replies: 1
    Last Post: 03-10-2009, 01:12 PM
  4. Replies: 2
    Last Post: 12-23-2008, 06:35 PM
  5. session
    By jm_it04 in forum AWT / Swing
    Replies: 0
    Last Post: 03-04-2008, 11:32 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •