Session Variables
1 posts in topic
Flat View  Flat View
TOPIC ACTIONS:
 

Posted By:   pragya_nawlakhe
Posted On:   Friday, July 27, 2001 02:34 AM

I want to know if it is secured to keep userid and password as session variable.
and is encryption required for userid and password in that case.

Re: Session Variables

Posted By:   AlessandroA_Garbagnati  
Posted On:   Friday, July 27, 2001 12:17 PM

Hi,

Session variables are stored on the server side, so, if the servlet container is located inside a secure system, you can consider them secure enough.

The encryption is suggested from the client to the server... maybe an https site would be enough.
About | Sitemap | Contact