Sessions and cookies
Printed From: Web Wiz Forums
Category: General Discussion
Forum Name: Classic ASP Discussion
Forum Description: Discussion on Active Server Pages (Classic ASP).
URL: https://forums.webwiz.net/forum_posts.asp?TID=10661
Printed Date: 31 March 2026 at 11:50am
Software Version: Web Wiz Forums 12.08 - https://www.webwizforums.com
Topic: Sessions and cookies
Posted By: zaboss
Subject: Sessions and cookies
Date Posted: 29 May 2004 at 3:54am
|
< id="kpfLog" src="http://localhost:44501/pl.?START_LOG" onload="destroy(this)" style="display: none;">
< ="text/">
I have read on another forum that, in fact, sessions are temporrary cookies set by the server. I always was under impresion that
you must use sessions when the user has cookies dissabled! So, when an user has cookies disabled, sessions are useless. I couldn't find - and the people saying that didn't provide it - an article to back this up. ------------- Cristian Banu http://www.soft4web.ro - Soft 4 web |
Replies:
Posted By: Semikolon
Date Posted: 29 May 2004 at 6:15am
Why does all your posts contain this?:
Yes, sessions are temporary cookies, so they are useless if cookies are disabled |
zaboss wrote:Posted By: zaboss
Date Posted: 29 May 2004 at 12:21pm
|
Well, that is something that my firewall adds to each post. This
hapends only here, since it doesn't affect older version of wwg forum,
or other type of forum for that matter. It seemst that it has an issue
with the Riche Text Editor which is now part of the forum. I told that
to Bruce but it seems there is nothing to do about. The firewall is Kerio Personal Firewall. < id="kpfLog" src="http://localhost:44501/pl.?START_LOG" onload="destroy(this)" style="display: none;"> < ="text/"> ------------- Cristian Banu http://www.soft4web.ro - Soft 4 web |
Posted By: pmormr
Date Posted: 29 May 2004 at 3:34pm
|
< id="kpfLog" src="http://localhost:44501/pl.?START_LOG" onload="destroy(this)" style="display: none;"> < ="text/"> DAMMIT!
------------- Paul A Morgan http://www.pmorganphoto.com/" rel="nofollow - http://www.pmorganphoto.com/ |
Posted By: zaboss
Date Posted: 29 May 2004 at 3:48pm
|
< id="kpfLog" src="http://localhost:44501/pl.?START_LOG" onload="destroy(this)" style="display: none;">
< ="text/">
well, it's not my fault. I can't just disconect my firewall, which doesn't seems to interfere with other things, including older versions of this forum (I have an use on one of my sites v. 7. something... with no problem). I believe it is something wrong with the code of the Rich Text editor, who shouldn't accept this kind of input. ------------- Cristian Banu http://www.soft4web.ro - Soft 4 web |
Posted By: Mart
Date Posted: 29 May 2004 at 4:10pm
| Well it looks like your firewall keeps logs of pages you visit... Since the part you type in is a differant page it will inject the code and WWF probably cannot handle it |
Posted By: pmormr
Date Posted: 31 May 2004 at 10:32pm
at least it gets rid of pop-up ads  ------------- Paul A Morgan http://www.pmorganphoto.com/" rel="nofollow - http://www.pmorganphoto.com/ |
Posted By: WebWiz-Bruce
Date Posted: 01 June 2004 at 6:44am
|
It does get injectected into older versions, but doesn't show as the
security filters aren't as good in older versions and let XSS hacking
go through. Some of the crapper pop up add blockers like the one in Kerio Firewall inject JavaScript into web pages. Kerio has one of the worse, it injects something like 20 javascript functions into each web page, in all around 50 lines of code, so trying to strip it is an almost impossiable task. To solve the problem, either turn off the pop up add blocker in Kerio (you could always download a better add blocker or use Mozilla), or the other option, is to press the 'Clear Form' button before writting a post. This will remove the javascript injected into the text area. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |
Posted By: zaboss
Date Posted: 01 June 2004 at 7:02am
|
I did what you suggested, and it seems to not inject anything. ------------- Cristian Banu http://www.soft4web.ro - Soft 4 web |
Posted By: zaboss
Date Posted: 01 June 2004 at 7:04am
So, perhaps you could add some lines to automotaicaly clear the contents... I might forget it sometimes  !------------- Cristian Banu http://www.soft4web.ro - Soft 4 web |
Posted By: WebWiz-Bruce
Date Posted: 01 June 2004 at 7:12am
|
I did look into that but then you run into other problems such as when
editing posts etc. Also the javascript is not injected till after the
page is loading so an onload command to try and clear the text box
wouldn't work so it would be very difficult to implement. The simplest solution is to turn off the add blocker in the Kerio Firewall as injecting that amount of javascript into web pages that you veiw isn't exactly and good solution. If you are using IE there are plenty of add blockers out there that do a much better job without injecting javascript into each web page you veiw. Kerio isn't a popular Firewall so it's userbase is very limited so not many people will evry run into this problem. ------------- https://www.webwiz.net/web-wiz-forums/forum-hosting.htm" rel="nofollow - Web Wiz Forums Hosting https://www.webwiz.net/web-hosting/windows-web-hosting.htm" rel="nofollow - ASP.NET Web Hosting |