[luau] dirty cookie trick(?)

Vince Hoang luau at ml.altern8.net
Tue Jul 8 05:47:01 PDT 2003


On Mon, Jul 07, 2003 at 03:44:58PM -1000, Virgil wrote:
> A cookie is a cookie and whether or not its embedded in ssl it
> should still be recognized by the browser as such; as a cookie.

Yes. Think of HTTPS as simply HTTP layered on top of SSL. Once
you peel away SSL, HTTPS is just HTTP.

-Vince



More information about the LUAU mailing list