As far as i know, the sessionid is entirely (pseudo)-random.
greets, mike
Jeff Poling wrote:
Is the jsessionid a simple random number, or is there information encoded into it. For example, on one other application server (non-J2EE), the client IP address is encoded into the generated sessionID for security reasons.
*************Jeff Poling, Research and Development, CMHC Systems**************
** For every difficult problem, there is * "A warp core breach is imminent? **
** a solution that is simple, obvious, * This calls for the handyman's **
** and wrong. * secret weapon, duct tape." -- Red**
** * Green, Chief Engineer, USS Voyager*
******************************************************************************
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
