WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: modify non-persistent cookies

From: securityarchitect () hush com
Date: Tue, 17 Dec 2002 15:05:34 -0800

The only difference between the a persistent cookie and non-persistent cookie is the expires element. If there is no 
expires element (time) defined then the cookie is (should be if HTTP User agent follows directives) stored in memory. 
Therefore there is no difference between modifiying persistent or non-persistent cookies.

As others have suggested the usual way is to intercept the HTTP stream before the cookie hits the browser. You could 
look and modify the memory space of the browser although I have never seen any apps that do this.


On Tue, 17 Dec 2002 02:55:49 -0800 mono toy <mono () spurious biz> wrote:

dear list,

is there a way to modify the contents of a non-persistent cookie 
one
receives?

thanks!

nico

[ Chief Financial Officer ]
[ cfo () spurious biz ]
[ smells like napalm, tastes like chicken! ]
[ 55B4 B4B6 B2EC B612 6A35  1535 C7E9 0534 7C69 25DF ]







Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2 

Big $$$ to be made with the HushMail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427
Previous By Date Next
Previous By Thread Next

Current thread: