> >>>so for example searches on google do not show the full URL.
> >
> >On 18.03.08 13:07, RW wrote:
> >>I don't know much about 2.5 but in up-to-date versions, logging of query
> >>urls is governed by "strip_query_terms". By default it's on to avoid
> >>logging things like session IDs.
> >
> >it's called privacy :)
On 20.03.08 00:52, Amos Jeffries wrote:
> It's called philanthropy: protecting idiots against themselves at ones
> own cost.
>
> No webmaster with any serious intentions of privacy publishes the
> SESSION-IDs in visible URI. The sensible ones use session cookies,
> nicely hidden from script-kiddies eyes, easily removed by
> security-conscious users, and not getting in the way of smart users
> direct-linking.
there are more things in GET strings than just session ID's...
-- Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. LSD will make your ECS screen display 16.7 million colorsReceived on Thu Mar 20 2008 - 09:12:14 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Apr 01 2008 - 13:00:05 MDT