Discuss / Java / 那不是拿到JSESSIONID,个人信息就完全暴露了吗?
Back

那不是拿到JSESSIONID,个人信息就完全暴露了吗?

Topic source

¯﹃¯

#1 Created at ... [Delete] [Delete and Lock User]

edge的JSESSIONID改为chrome的过后,登录信息也变成chrome的登录信息了,请问老师该怎么保证安全呢?

廖雪峰

#2 Created at ... [Delete] [Delete and Lock User]

你自己去读jsessionid干啥?

¯﹃¯

#3 Created at ... [Delete] [Delete and Lock User]

我想着jsessionid通过网络传输,jsessionid被别人拿到就相当于密码泄露了

廖雪峰

#4 Created at ... [Delete] [Delete and Lock User]

所以要https

  • 1

Reply