Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

web server and security - cookies

Posted on 2013-05-15
3
Medium Priority
?
290 Views
Last Modified: 2013-05-16
Web experts,

This is a 2 part question

Question 1a): When I go to my stock broker site, I see that I am never allowed to save the password on my browser. It only saves my account ID and I have to enter my password. Is it the broker's website that doenst allow my browser to save the password or is it just a setting on my browser.

Question 2a): I visit a particular Https site and see that my session is always logged in as long as I don't close my browser or explicitly log off. I could pull the network cable out of my computer for an hour and then plug it back in and pick up on the site exactly where i left off. am i correct to assume that the site sent me a session cookie that was stored in my browser which had the setting to never expire?
0
Comment
Question by:trojan81
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 58

Accepted Solution

by:
Gary earned 2000 total points
ID: 39168864
1. They don't want the password stored
2. They set a cookie for a limited lifetime so when you go back to the site you are automatically logged back in
0
 

Author Comment

by:trojan81
ID: 39170231
Gary

for #1, i understand they don't want the password stored, but how can they enforce it so that your browser never stores it prefilled in the password box?
0
 
LVL 58

Expert Comment

by:Gary
ID: 39170640
0

Featured Post

The Ideal Solution for Multi-Display Applications

Check out ATEN’s VS1912 12-Port DP Video Wall Media Player at InfoComm 2017. Kerri describes how easy it is to design creative video walls in asymmetric layouts and schedule detailed playlists ahead of time with its advanced scheduling feature.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
This article investigates the question of whether a computer can really be cleaned once it has been infected, and what the best ways of cleaning a computer might be (in this author's opinion).
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question