RE: Search Engine safe urls and CFID/CFTOKEN

Stephen Fernandez Tue, 06 Feb 2001 06:50:36 -0800

what method do you use to scrub the cfid and cftoken and assign new values?

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: 06 February 2001 01:57
To: Fusebox
Subject: RE: Search Engine safe urls and CFID/CFTOKEN


I have the CFID/CFTOKEN values in the URL.

But when the referrer is not from my website, I scrub those values and 
assign new ones.

best,  paul

PS> What's "SES"

At 05:33 PM 2/5/01 -0500, you wrote:
>Consider what happens when a search engine indexes your site including the 
>CFID/CFTOKEN identifiers in the SES URL.... Depending on your structure, 
>they might all end up assuming the *same* session or client identity, or 
>throwing timeout errors, viewing other people's shopping carts... all 
>sorts of nasty stuff (theoretically, anyway).
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at 
http://www.fusionauthority.com/bkinfo.cfm

Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists

RE: Search Engine safe urls and CFID/CFTOKEN

Reply via email to