No subject


Tue Nov 13 08:16:38 EST 2012 

Geoffrey Myers<br>
<br>
</div><div class=3D"HOEnZb"><div class=3D"h5">On Apr 26, 2013, at 4:44 PM, =
Phil Turmel &lt;<a href=3D"mailto:philip at turmel.org">philip at turmel.org</a>&=
gt; wrote:<br>
<br>
&gt;<br>
&gt; On 04/26/2013 03:29 PM, Geoffrey Myers wrote:<br>
&gt;&gt; So, still wrestling with this. Scenario:<br>
&gt;&gt;<br>
&gt;&gt; 1. Frame of page creates a cookie. Another frame in that page retr=
ieves all cookies, does not see the new cookie.<br>
&gt;&gt;<br>
&gt;&gt; 2. Totally separate page on another tab creates a cookie. Both fra=
mes of other tab see this cookie.<br>
&gt;&gt;<br>
&gt;&gt; Why aren&#39;t the cookies created in frame 1 seen by frame 2?<br>
&gt;&gt;<br>
&gt;&gt; 2nd tab does not see the cookie created by first frame either.<br>
&gt;&gt;<br>
&gt;&gt; Cookies are not page specific. What is going on?<br>
&gt;<br>
&gt; This isn&#39;t correct. =C2=A0The &#39;path&#39; component of a cookie=
 makes it at least<br>
&gt; partially page-specific, and the domain of the cookie triggers many<br=
>
&gt; visibility restrictions. =C2=A0Some of those are explained in the<br>
&gt; specification, but other restrictions have been added to browsers to<b=
r>
&gt; limit cross-site hacks.<br>
&gt;<br>
&gt; Short of letting others look at the pages in question, it will probabl=
y<br>
&gt; be difficult to help. =C2=A0 At least a trace of the request and respo=
nse<br>
&gt; headers for each page and frame would be needed.<br>
&gt;<br>
&gt; (I&#39;m definitely not an expert on these topics, but I can spot some=
 of<br>
&gt; the common flaws if they are staring me in the face.)<br>
&gt;<br>
&gt; Phil<br>
&gt;<br>
&gt; _______________________________________________<br>
&gt; Ale mailing list<br>
&gt; <a href=3D"mailto:Ale at ale.org">Ale at ale.org</a><br>
&gt; <a href=3D"http://mail.ale.org/mailman/listinfo/ale" target=3D"_blank"=
>http://mail.ale.org/mailman/listinfo/ale</a><br>
&gt; See JOBS, ANNOUNCE and SCHOOLS lists at<br>
&gt; <a href=3D"http://mail.ale.org/mailman/listinfo" target=3D"_blank">htt=
p://mail.ale.org/mailman/listinfo</a><br>
<br>
_______________________________________________<br>
Ale mailing list<br>
<a href=3D"mailto:Ale at ale.org">Ale at ale.org</a><br>
<a href=3D"http://mail.ale.org/mailman/listinfo/ale" target=3D"_blank">http=
://mail.ale.org/mailman/listinfo/ale</a><br>
See JOBS, ANNOUNCE and SCHOOLS lists at<br>
<a href=3D"http://mail.ale.org/mailman/listinfo" target=3D"_blank">http://m=
ail.ale.org/mailman/listinfo</a><br>
</div></div></blockquote></div><br><br clear=3D"all"><br>-- <br>-- <br>Jame=
s P. Kinney III<br><i><i><i><i><br></i></i></i></i>Every time you stop a sc=
hool, you will have to build a jail. What you=20
        gain at one end you lose at the other. It&#39;s like feeding a dog =
on his=20
        own tail. It won&#39;t fatten the dog.<br>

        - Speech 11/23/1900 Mark Twain<br><i><i><i><i><br><a href=3D"http:/=
/electjimkinney.org" target=3D"_blank">http://electjimkinney.org</a><br><a =
href=3D"http://heretothereideas.blogspot.com/" target=3D"_blank">http://her=
etothereideas.blogspot.com/</a><br>
</i></i></i></i>
</div>

--047d7b3a84369a4f1004db9716bb--

More information about the Ale mailing list