These headers only prevent the proxy server from creating a cached version. They do not prevent a user behind a proxy, from visiting the website with the same session tokens :)
The only way is to separate users, be denying a clone to use the service with the same tokens, or by identifying clones with clone specific data (cookies). :) Micha Schopman Software Engineer Modern Media, Databankweg 12 M, 3821 AL Amersfoort Tel 033-4535377, Fax 033-4535388 KvK Amersfoort 39081679, Rabo 39.48.05.380 ------------------------------------------------------------------------ ------------------------------------------------------------------------ ----- Modern Media, Making You Interact Smarter. Onze oplossingen verbeteren de interactie met uw doelgroep. Wilt u meer omzet, lagere kosten of een beter service niveau? Voor meer informatie zie www.modernmedia.nl ------------------------------------------------------------------------ ------------------------------------------------------------------------ ----- -----Original Message----- From: RADEMAKERS Tanguy [mailto:[EMAIL PROTECTED] Sent: woensdag 26 januari 2005 15:11 To: CF-Talk Subject: RE: Sessions being show to wrong users? Martin, Try this: <cfheader name="Cache-Control" value="no-store"> <cfheader name="Cache-Control" value="no-cache"> /t >-----Original Message----- >From: Martin Parry [mailto:[EMAIL PROTECTED] >Sent: Wednesday, January 26, 2005 2:18 PM >To: CF-Talk >Subject: RE: Sessions being show to wrong users? > >Yes, I like that !! But... If the user's coming from behind a >proxy all >you see is a single IP address as they're using NAT. It should reduce >his problem somewhat though. > >Martin Parry >Macromedia Certified Developer >http://www.BeetrootStreet.co.uk > > >-----Original Message----- >From: Micha Schopman [mailto:[EMAIL PROTECTED] >Sent: 26 January 2005 12:50 >To: CF-Talk >Subject: RE: Sessions being show to wrong users? > >Oh, and another option, lock the session to the IP address of the >visitor. > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:191797 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
