This is Interesting: Free Magazines for Graphics designers and webmasters
Home > Archive > Webmaster forum > January 2005 > Stopping secure pages appearing in history
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Stopping secure pages appearing in history
|
|
|
| Hi All
I know this probably sounds like a newbie question, but I was under the
impression that secure pages (https) don't appear in the history/address bar
history list - this appears to be incorrect?
Should I really be putting some form of expiry command at the head of each
of these pages if I don't want casual users to see them?
I use Classic ASP so is it better to use a command via this lang or the old
META methods?
Depending on which is the best, what are these commands?
Thanks
Robbie
| |
| Charles Sweeney 2005-01-25, 7:23 am |
| Astra wrote
> Hi All
>
> I know this probably sounds like a newbie question, but I was under
> the impression that secure pages (https) don't appear in the
> history/address bar history list - this appears to be incorrect?
>
> Should I really be putting some form of expiry command at the head of
> each of these pages if I don't want casual users to see them?
>
> I use Classic ASP so is it better to use a command via this lang or
> the old META methods?
>
> Depending on which is the best, what are these commands?
I would imagine it's down to the browser whether it chooses to keep a
note of where it's been!
If you don't mind me saying, I think your question is silly. You
suggest that it's ok for someone to view a page, but perhaps not at a
later date from their history?
Sounds like you need a login system, so when a user returns and the
session has expired, they must log in again to view the page.
--
Charles Sweeney
http://CharlesSweeney.com
| |
| Astra 2005-01-25, 12:40 pm |
| Hi Charles
But I am silly ;0)
Hope you are well.
I've got the session login system in place, but I wanted to tidy this up so
that the pages aren't left in history for 3rd party prying eyes to log. If
they never see the URLs then it makes it even harder to source.
Noticed that an ISP's webmail pages didn't appear after use and I thought
this was a graceful approach for admin, etc
Rgds
Robbie
"Charles Sweeney" <me@charlessweeney.com> wrote in message
news:Xns95E9665BE1118mecharlessweeneycom@130.133.1.4...
Astra wrote
> Hi All
>
> I know this probably sounds like a newbie question, but I was under
> the impression that secure pages (https) don't appear in the
> history/address bar history list - this appears to be incorrect?
>
> Should I really be putting some form of expiry command at the head of
> each of these pages if I don't want casual users to see them?
>
> I use Classic ASP so is it better to use a command via this lang or
> the old META methods?
>
> Depending on which is the best, what are these commands?
I would imagine it's down to the browser whether it chooses to keep a
note of where it's been!
If you don't mind me saying, I think your question is silly. You
suggest that it's ok for someone to view a page, but perhaps not at a
later date from their history?
Sounds like you need a login system, so when a user returns and the
session has expired, they must log in again to view the page.
--
Charles Sweeney
http://CharlesSweeney.com
| |
| Charles Sweeney 2005-01-25, 7:24 pm |
| Astra wrote
> Hi Charles
Hi Robbie/Astra.
It is pretty much down to the user if they want to protect their sensitive
information by hitting the logout button. You can also shorten the length
of time the session is active for, when it would then automatically expire.
--
Charles Sweeney
http://CharlesSweeney.com
|
|
|
| | Copyright 2003 - 2008 forum4designers.com Software forum Computer Hardware reviews |
|