Can cookies be faked?
The question is just that: is it possible to fake cookies? I ask because I'm working on a site that relies on cookies. People who haven't logged in shouldn't be able to access some sections. I've constructed a nice PHP engine that lets people log in and sets a cookie with an expiration time of four hours if the log in was succesful. The content of the cookie is a Unix timestamp of now. I'm wondering if it is possible for people to fake a cookie in their own/someone else's browser to make it look like the cookie was issued by my script. No really important information is dealt with, but still...
Comments
Originally posted by der Kopf
The question is just that: is it possible to fake cookies?
sure, just make them out of clay or playdough. i think they even have some already made up for you in some of those toy bake sets. mmmm plastic cokies.