Sawan wrote:
Now if anyone copy and paste the url on another machine's browser, then How can he/she will get the user name and password there..?
If that url includes ";jsessionid=..." then sure, they've just had their session hijacked, including all the information you put in that session.
-Dale --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
