Ask Question Forum:
Model Library:2025-02-08:A.I. model is online auto reply
C
O
M
P
U
T
E
R
2
8
Show
#
ASK
RECENT
←
- Underline
- Bold
- Italic
- Indent
- Step
- Bullet
- Quote
- Cut
- Copy
- Paste
- Table
- Spelling
- Find & Replace
- Undo
- Redo
- Link
- Attach
- Clear
- Code
Below area will not be traslated by Google,you can input code or other languages
Hint:If find spelling error, You need to correct it,1 by 1 or ignore it (code area won't be checked).
X-position of the mouse cursor
Y-position of the mouse cursor
Y-position of the mouse cursor
Testcursor
caretPos
Attachment:===
Asked by duncanb7
at 2024-05-10 18:49:42
Point:500 Replies:6 POST_ID:828502USER_ID:11059
Topic:
PHP Scripting Language;;JavaScript
I would like to know the cookie file format. I have taken one example cookie file from my
PC C:Ducument and SettingsAdministratorLocal SettingsTemporary Internet Files and I put
it as follow code area and attached file.
Actually it is text file and I know the first line items that is cookie name, second line is cookie value
and third one is domain name from . What is stand for from line-4 to line 8? And it seems it use "*"
at line-9 to terminate one cookie entry and start next new one , Right ? Please advise , Duncan
line-1 uid
Line-2 4dc15532b1945880
Line-3 addthis.com/
Line-4 2147484752
Line-5 3646169600
Line-6 30297400
Line-7 3179010992
Line-8 30150348
Line-9 *
Line-10 psc
16
addthis.com/
2147484752
3646169600
30297400
3179010992
30150348
*
PC C:Ducument and SettingsAdministratorLocal SettingsTemporary Internet Files and I put
it as follow code area and attached file.
Actually it is text file and I know the first line items that is cookie name, second line is cookie value
and third one is domain name from . What is stand for from line-4 to line 8? And it seems it use "*"
at line-9 to terminate one cookie entry and start next new one , Right ? Please advise , Duncan
line-1 uid
Line-2 4dc15532b1945880
Line-3 addthis.com/
Line-4 2147484752
Line-5 3646169600
Line-6 30297400
Line-7 3179010992
Line-8 30150348
Line-9 *
Line-10 psc
16
addthis.com/
2147484752
3646169600
30297400
3179010992
30150348
*
uid4dc15532b1945880addthis.com/2147484752364616960030297400317901099230150348*psc16addthis.com/2147484752364616960030297400317901099230150348*locHK%2CMDAwMDBBU0hLMDAyMDIyMjk0MTAwMDAwMDAwVg%3d%3daddthis.com/2147484672314321433630167509379318841630149404*dtXaddthis.com/2147484672212921881630156379343763017630150344*di1304597170.1ODaddthis.com/2147484672242921408030296270299845897630149419*bt1304604902|00003I01000003J04000003Q014addthis.com/2147484672201446528030297195343763017630150344* 1:2:3:4:5:6:7:8:9:10:11:12:13:14:15:16:17:18:19:20:21:22:23:24:25:26:27:28:29:30:31:32:33:34:35:36:37:38:39:40:41:42:43:44:45:46:47:48:49:50:51:52:53:54:
Attachment:administrator-addthis-2-.txt
Author: duncanb7 replied at 2024-12-23 09:38:59
The deep value of cookies comes from the data base backed nature of web sites. Let me try to explain with some examples. Let's say you set a cookie on a client machine and at some time in the future, the client comes back to your web site. With each page load, you can keep track of the client's interests. You can know whether the client is shopping for cookware or shoes, and what pages resulted in the most purchases at the highest profit margins. All of this sort of incredibly valuable business intelligence is facilitated by the cookie.
But the cookie itself only tells the server its name and its value. So how can all this information be available? It's because other programming running on the server keeps the data base up-to-date. The cookie is merely a key into one table of a relational data base; the cascade of valuable information is kept on the server. The tip of the iceberg, if you will.
I've seen questions here at EE and in other forums that go something like, "Is it save to keep my user-id and password in a cookie?" That's the wrong question. The right question is, "How can I set cookies that tamper-resistant, so I can trust them when I use them for keys to my data base of client information?"
For the most part you can trust all the browsers to return cookies with the name and value you used when setting the cookie. And as a result you can trust any tamper-resistant cookie to be an accurate key to your data base. Most security-conscious programmers (like those of us who have to handle money or important information) will supplement the cookie with a request for password authentication before we make a change to the data model or before we expose sensitive data.
HTH, ~Ray
But the cookie itself only tells the server its name and its value. So how can all this information be available? It's because other programming running on the server keeps the data base up-to-date. The cookie is merely a key into one table of a relational data base; the cascade of valuable information is kept on the server. The tip of the iceberg, if you will.
I've seen questions here at EE and in other forums that go something like, "Is it save to keep my user-id and password in a cookie?" That's the wrong question. The right question is, "How can I set cookies that tamper-resistant, so I can trust them when I use them for keys to my data base of client information?"
For the most part you can trust all the browsers to return cookies with the name and value you used when setting the cookie. And as a result you can trust any tamper-resistant cookie to be an accurate key to your data base. Most security-conscious programmers (like those of us who have to handle money or important information) will supplement the cookie with a request for password authentication before we make a change to the data model or before we expose sensitive data.
HTH, ~Ray
Accepted Solution
Author: duncanb7 replied at 2024-05-11 09:10:50
Final one what is Flag for , for security or others?
Author: duncanb7 replied at 2024-05-11 09:08:11
in the http proxy software, I didn't see
,Flags,Exirpation time (low),Expiration time (high),Creation time (low),Creation time (high)
Only see name, value, domain, Why ?
Who will need those ,Flags,Exirpation time (low),Expiration time (high),Creation time (low),Creation time (high),
information?
How those information is related to the following setcookies() in php ?
setcookie($cookie_name, $cookie_value, $cookie_expires, $cookie_path, $cookie_domain, $cookie_secure, $cookie_http)
Is $cookie_expires=t = 1e-7*(high*pow(2,32)+low) - 11644473600 in the article mentioned above for expire time ?
Where we can set the Flag and Creation time(High,low) in setcookie() ?
Is CURLOPT_COOKIE variable in curl_setopt setting for Flag and Creation time ?
Please advise
Ducan
,Flags,Exirpation time (low),Expiration time (high),Creation time (low),Creation time (high)
Only see name, value, domain, Why ?
Who will need those ,Flags,Exirpation time (low),Expiration time (high),Creation time (low),Creation time (high),
information?
How those information is related to the following setcookies() in php ?
setcookie($cookie_name, $cookie_value, $cookie_expires, $cookie_path, $cookie_domain, $cookie_secure, $cookie_http)
Is $cookie_expires=t = 1e-7*(high*pow(2,32)+low) - 11644473600 in the article mentioned above for expire time ?
Where we can set the Flag and Creation time(High,low) in setcookie() ?
Is CURLOPT_COOKIE variable in curl_setopt setting for Flag and Creation time ?
Please advise
Ducan
Assisted Solution
Expert: Ray Paseur replied at 2024-05-11 05:03:10
167 points EXCELLENT
The deep value of cookies comes from the data base backed nature of web sites. Let me try to explain with some examples. Let's say you set a cookie on a client machine and at some time in the future, the client comes back to your web site. With each page load, you can keep track of the client's interests. You can know whether the client is shopping for cookware or shoes, and what pages resulted in the most purchases at the highest profit margins. All of this sort of incredibly valuable business intelligence is facilitated by the cookie.
But the cookie itself only tells the server its name and its value. So how can all this information be available? It's because other programming running on the server keeps the data base up-to-date. The cookie is merely a key into one table of a relational data base; the cascade of valuable information is kept on the server. The tip of the iceberg, if you will.
I've seen questions here at EE and in other forums that go something like, "Is it save to keep my user-id and password in a cookie?" That's the wrong question. The right question is, "How can I set cookies that tamper-resistant, so I can trust them when I use them for keys to my data base of client information?"
For the most part you can trust all the browsers to return cookies with the name and value you used when setting the cookie. And as a result you can trust any tamper-resistant cookie to be an accurate key to your data base. Most security-conscious programmers (like those of us who have to handle money or important information) will supplement the cookie with a request for password authentication before we make a change to the data model or before we expose sensitive data.
HTH, ~Ray
But the cookie itself only tells the server its name and its value. So how can all this information be available? It's because other programming running on the server keeps the data base up-to-date. The cookie is merely a key into one table of a relational data base; the cascade of valuable information is kept on the server. The tip of the iceberg, if you will.
I've seen questions here at EE and in other forums that go something like, "Is it save to keep my user-id and password in a cookie?" That's the wrong question. The right question is, "How can I set cookies that tamper-resistant, so I can trust them when I use them for keys to my data base of client information?"
For the most part you can trust all the browsers to return cookies with the name and value you used when setting the cookie. And as a result you can trust any tamper-resistant cookie to be an accurate key to your data base. Most security-conscious programmers (like those of us who have to handle money or important information) will supplement the cookie with a request for password authentication before we make a change to the data model or before we expose sensitive data.
HTH, ~Ray
Assisted Solution
Expert: Ray Paseur replied at 2024-05-11 04:48:32
166 points EXCELLENT
This article appears to be a pretty good introduction:
http://www.howstuffworks.com/cookie.htm
As always, the Wikipedia has a good and growing information set:
http://en.wikipedia.org/wiki/HTTP_cookie
http://www.howstuffworks.com/cookie.htm
As always, the Wikipedia has a good and growing information set:
http://en.wikipedia.org/wiki/HTTP_cookie
Assisted Solution
Expert: iGottZ replied at 2024-05-11 00:50:27
167 points EXCELLENT
this would explain it:
http://weitips.blogspot.com/2006/04/cookie-file-format-of-internet.html
http://weitips.blogspot.com/2006/04/cookie-file-format-of-internet.html
Cookie name
Cookie value
Host/path for the web server setting the cookie
Flags
Exirpation time (low)
Expiration time (high)
Creation time (low)
Creation time (high)
Record delimiter (*)
Cookie value
Host/path for the web server setting the cookie
Flags
Exirpation time (low)
Expiration time (high)
Creation time (low)
Creation time (high)
Record delimiter (*)