Security risks with session attributes

Hi all,I was wondering if there were any security risks that are know while using session attributes.Is there a way for a hacker to read them?THanksAdam

[194 byte] By [adamrau] at [2007-9-26 3:01:20]

«« ProgressBar to Send file code.
»» Question about casting?

# 1

I would seriously doubt it since all session data is located physically on the server. Even if a hacker broke into your site, they'd have to read the session data from RAM, which is almost impossible.

jpardi at 2007-6-29 10:59:19 >

top of Java-index,Enterprise & Remote Computing,Web Tier APIs...

Enterprise & Remote Computing New Topic

how to deal with notfound exception with findByPrimaryKey?
JSP :: Please Wait Page
Who understand how Local Interfaces work ?
Displaying search result across multiple pages
How to place database values in the textarea
valueUnbound() method not called when session expires
Problem in a composite primary key
Urgent:Session swapping problem

Enterprise & Remote Computing Hot Topic

why my JSP code is showed in browser
losing session
TOO MUCH JAVASCRIPT?
EJB 2.0 and DAO
I dont know nothing about XML, but...
Can't send mail to outside company
Install JSDK problems?
Convert JSP to valid XML

Java programming resources: FAQs, tutorials, compiler and browser download sites, documentation, books lists, IDEs, etc.

Security risks with session attributes

Enterprise & Remote Computing New Topic

Enterprise & Remote Computing Hot Topic

Enterprise & Remote Computing

All Classified