Programming. 40+ Invaluable PHP Tutorials and Resources. UseTheSource. C++ Reference [C++ Reference] HTTP cookies, or how not to design protocols. For as long as I remember, HTTP cookies have been vilified as a grave threat to the privacy of online browsing; wrongly so. That said, the mechanism itself is a very interesting cautionary tale for security engineers - and that will be the theme of today's feature. Cookies were devised by Lou Montulli, a Netscape engineer, somewhere in 1994. Lou outlined his original design in a minimalistic, four-page proposal posted on netscape.com; based on that specification, the implementation shipped in their browser several months later - and other vendors were quick to follow.
It wasn't until 1997 that the first reasonably detailed specification of the mechanism has been attempted: RFC 2109. Three years later, another, somewhat better structured effort to redesign cookies - RFC 2965 - proved to be equally futile. They have Internet over there, too? Perhaps the most striking issue - and an early sign of trouble - is the problem of domain scoping. 8K ought to be enough for for anybody "Oh, please.
A Whole Lot of AJAX! Directory for Web 2.0 AJAX scripts, demos and tutorials. Custom AJAX Coding Service for Your Web 2.0 Website. — ajaxBlender.com. Location infrastructure, GIS, and geo-location services.