(Yes, this is related to my "session hijacking" issue)
I've added some code in my app to, I *thought*, refresh the ID/Token pairs
better - trying to put the info in memory-based cookies instead of
file-based cookies, so that closing the browser will kill the cookie, and
the user will get a new id/token pair.
It worked great for me, from outside the client's network, coming across the
net - but users inside the LAN are still being assigned the same id/token
pair - by this I mean MULTIPLE users are getting this assigned pair.
Moreover it's a pair that was assigned yesterday, at the very least - I
can't tell how long this particular pair of values has been in use. I just
know I started tracking this stuff yesterday and multiple people are getting
the pair. I get to work this morning to check, and I see more folks coming
in and getting this pair.
What gives??? This is driving me nuts. :(
--Scott
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
