Hi Dale, Yes, my url includes ";jsessionid=...", but I am not adding it in my program manually and don't know from where it is coming..? If the problem is due to addition of ";jsessionid=..." then I really wants to remove it from my url. Please suggest me any solution to remove ";jsessionid=..." from my url.
Thanks & regards Sawan DNewfield wrote: > > Sawan wrote: >> Now if anyone copy and paste the url on another machine's browser, >> then How can he/she will get the user name and password there..? > > If that url includes ";jsessionid=..." then sure, they've just had their > session hijacked, including all the information you put in that session. > > -Dale > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > -- View this message in context: http://www.nabble.com/Handling-Session-Objects-tf4211020.html#a12028386 Sent from the Struts - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
