I forgot to tell what my server runs:
Jsdk 1.4.0
Tomcat 4.0.4
Apache 1.3.23
Windows NT 4 sp6
Thanks in advance
Roland
- Original Message -
From: Roland Carlsson [EMAIL PROTECTED]
To: Tomcat Users List [EMAIL PROTECTED]
Sent: Wednesday, August 14, 2002 11:19 AM
Subject: Session and IP
Afaik tomcat uses either cookies or url-encoding to get the session-id from
the users requesting a resource, which has nothing to do with the ip
address. The only circumstances I could imagine therefore are two differente
browsers having installed the same session-cookie (which is quite unlikely
[EMAIL PROTECTED]
To: 'Tomcat Users List' [EMAIL PROTECTED]
Sent: Wednesday, August 14, 2002 11:31 AM
Subject: RE: Session and IP
Afaik tomcat uses either cookies or url-encoding to get the session-id
from
the users requesting a resource, which has nothing to do with the ip
address. The only
im using tomcat 4.04
and this is my code for using the jdbc realm in the server.xml
Realm className=org.apache.catalina.realm.JDBCRealm debug=99
driverName=oracle.jdbc.driver.OracleDriver
connectionURL=jdbc:oracle:thin:@dev10:1521:dev10
Thanks for your answer.
We have now put a header with nocache. One of the users that have reported
the error of getting someone else data says that it works like it should so
it seems like if the problem was in a proxy.
I would like to ask for tomcat as default to uses nocache since that is the
Message -
From: Roland Carlsson [EMAIL PROTECTED]
To: Tomcat Users List [EMAIL PROTECTED]
Sent: Wednesday, August 14, 2002 11:35 AM
Subject: Re: Session and IP
Thanks for your answer.
We are not using url-encoding, only cookies.
Is it possible that a proxy can catch the page and fool
