Skip to main content

jeff

Member since Mar 23, 2009

Recent Blog Comments By jeff

  • The Same CFID-CFTOKEN Values Are Used Across ColdFusion Session Timeouts

    Posted on Mar 23, 2009 at 9:50 PM

    @Tim That's where we started, but since we were government, we had very strict rules about usage of cookies. The other piece that tipped the scales was that CF was apparently reusing the token id's which was causing big problems, for obvious reasons. I talked to some Macromedia guys about it and ... read more »

  • The Same CFID-CFTOKEN Values Are Used Across ColdFusion Session Timeouts

    Posted on Mar 23, 2009 at 7:11 PM

    For reasons described here, we decided 5 or 6 years ago to abandon the CF session management. The fatal flaw in the system was clueless users copying and pasting urls from their browser address bar and emailing them to others. Result was hijacked sessions with users doing things they shouldn't hav... read more »

I believe in love. I believe in compassion. I believe in human rights. I believe that we can afford to give more of these gifts to the world around us because it costs us nothing to be decent and kind and understanding. And, I want you to know that when you land on this site, you are accepted for who you are, no matter how you identify, what truths you live, or whatever kind of goofy shit makes you feel alive! Rock on with your bad self!
Ben Nadel