Bud,
By default, the cookie is set for whatever server you are on. For
example, if I go to www.fuseware.com, that server may set a cookie that is
only readable from www.fuseware.com. beta.fuseware.com will not be able to
read it, and neither will www.allaire.com. If I want to share a cookie
between beta.fuseware.com and www.fuseware.com, I would then add the
DOMAIN=".fuseware.com". However, you cannot set a cookie at
www.fuseware.com that can be read by www.allaire.com, even though they be on
the same box.
The security implications are that one domain cannot read cookies set by
another, for privacy reasons.
Chris Evans
[EMAIL PROTECTED]
http://www.fuseware.com
-----Original Message-----
From: Bud [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 13, 2000 11:51 AM
To: [EMAIL PROTECTED]
Subject: RE: Domain specific cookies with CFCOOKIE
On 7/13/00, Chris Evans penned:
>Bud,
>
> Cookies cannot be read from a different domain than where they are set.
>This is a security precaution built into the cookie specification.
Then what exactly in the Domain attribute for in cfcookie? I'm not
quite sure where the security hazard comes in either. I can create
any cookie for any domain I want manually on my own machine, so
there's no security with cookies anyway.
--
Bud Schneehagen - Tropical Web Creations
_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
ColdFusion Solutions / eCommerce Development
[EMAIL PROTECTED]
http://www.twcreations.com/
954.721.3452
----------------------------------------------------------------------------
--
Archives: http://www.mail-archive.com/[email protected]/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/[email protected]/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
