|
Web Application Security
Is logoff feature necessary May 02 2006 07:41AM test future gmail com (14 replies) Re: Is logoff feature necessary May 02 2006 08:06PM Robert Hajime Lanning (robert lanning gmail com) RE: Is logoff feature necessary May 02 2006 12:40PM Rod Divilbiss (rod rodsdot com) (1 replies) RE: Is logoff feature necessary May 03 2006 10:59AM Auri Rahimzadeh (auri auri net) (2 replies) Administrivia: Is logoff feature necessary May 03 2006 12:53PM Andrew van der Stock (vanderaj greebo net) Re: Is logoff feature necessary May 02 2006 09:32AM Luciano Miguel Ferreira Rocha (strange nsk no-ip org) |
|
|
Privacy Statement |
If you take out the security issue then it's still a good idea to put
a logoff feature for future use. If you need to clean up after a
session that is usually a good point to do it. And for user sense of
security it's good practise to use it. Even if you don't beleave the
security will increase the customer could interpret it as a more
secure and wellthough of security application.
And then we have the uncertenty of the browser. Even if there is a
good chance that all user information is purged everytime you close
the browser, because that is the general practise, you can't be
certent of that.
So convice your developer to make the effort.
best regards
Daniel
On 2 May 2006 07:41:02 -0000, test.future (at) gmail (dot) com [email concealed]
<test.future (at) gmail (dot) com [email concealed]> wrote:
> We have a web applicaiton which do not have logoff button. The developer claims that it is unnecessary, since the session can be terminated by closing the browser. Is it correct? Thanks.
>
> ------------------------------------------------------------------------
-
> Sponsored by: Watchfire
>
> The Twelve Most Common Application-level Hack Attacks
> Hackers continue to add billions to the cost of doing business online
> despite security executives' efforts to prevent malicious attacks. This
> whitepaper identifies the most common methods of attacks that we have seen,
> and outlines a guideline for developing secure web applications.
> Download this whitepaper today!
>
> https://www.watchfire.com/securearea/whitepapers.aspx?id=701300000007t9r
> ------------------------------------------------------------------------
--
>
>
--
Daniel Persson
mailto.woden (at) gmail (dot) com [email concealed]
------------------------------------------------------------------------
-
Sponsored by: Watchfire
The Twelve Most Common Application-level Hack Attacks
Hackers continue to add billions to the cost of doing business online
despite security executives' efforts to prevent malicious attacks. This
whitepaper identifies the most common methods of attacks that we have seen,
and outlines a guideline for developing secure web applications.
Download this whitepaper today!
https://www.watchfire.com/securearea/whitepapers.aspx?id=701300000007t9r
------------------------------------------------------------------------
--
[ reply ]