Remember Me?

Welcome to BestHostingForums.com - WebHosting, WebMaster & SEO Forums

BestHostingForums Forum is a place for File Host, Web Hosting, Designers, Developers and Marketers. Become a part of the BHF forums today!. You will have to Register an Account to join the friendly Webmaster Forum community before you can post. If you need instructions on using our forum check out FAQs page.

Results 1 to 10 of 18

Session Hijacking

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

23rd Aug 2010, 01:27 PM

#11
OP
litewarez

View Profile

View Forum Posts

Private Message

Visit Homepage
Member
Website's:
```
litewarez.net
litewarez.com
triniwarez.com
```
Join Date : Nov 2008

Location : UK

Posts : 1,350

Thanks: 0
Thanked 0 Times in 0 Posts

Rep Power : 18

Reputation : (10)
yea VB / PHPBB they have Session Fixation Implemented already, this mainly for personal apps you create.

Another method that i would bet face-book's code goes along is something like this .

PHP Code:

$timeout = 60 * 60; // 1 hour $fingerprint = md5('MY-SECRET-SALT'.$_SERVER['HTTP_USER_AGENT']); session_start(); if( (isset($_SESSION['last_active']) && (time() > ($_SESSION['last_active']+$timeout))) || (isset($_SESSION['fingerprint']) && $_SESSION['fingerprint']!=$fingerprint) || isset($_GET['logout']) ) { //Logout! } session_regenerate_id(); //ALWAYS BEFORE $_SESSION['last_active'] = time(); $_SESSION['fingerprint'] = $fingerprint;

And within your html create a javascript file to ping the server every 30 seconds to keep them alive. this is called a heartbeat.

Join Litewarez.net today and become apart of the community.
Unique | Clean | Advanced (All with you in mind)
Downloads | Webmasters

Notifications,Forum,Chat,Community all at Litewarez Webmasters
Register To Reply

Sponsored Links

« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

[help] Detect session on URL

By jomasaco in forum Web Development Area

Replies: 4
Last Post: 28th Apr 2011, 05:20 PM
China Web hijacking shows Net at risk

By Benign in forum News & Current Events

Replies: 4
Last Post: 18th Nov 2010, 06:32 AM
[PHP] Session's secure

By Nedim! in forum Web Development Area

Replies: 2
Last Post: 12th Oct 2010, 05:43 PM
stop image hijacking (anti-hotlinking) Lighttpd

By jessepure in forum Server Management

Replies: 4
Last Post: 16th Jan 2010, 12:19 PM
Webcam session with To0 :P

By CyberJ37 in forum General Discussion

Replies: 40
Last Post: 22nd Dec 2009, 09:20 AM

Tags for this Thread

hijacking, session

View Tag Cloud

Latest Posts
- themaLeecher - leech and manage...
  
  Version 5.07 released. Open older version (or...
  
  Yesterday, 10:18 AM
- themaPoster - post to forums and...
  
  Version 5.41 released. Open older version (or...
  
  24th Aug 2025, 02:53 PM
- themaRegister - register to forums...
  
  Version 3.56 released. Open older version (or...
  
  23rd Aug 2025, 08:59 PM
- themaCreator - create posts from...
  
  Version 3.56 released. Open older version (or...
  
  21st Aug 2025, 08:01 PM
- themaCreator - create posts from...
  
  Version 3.55 released. Open older version (or...
  
  14th Aug 2025, 07:14 PM
Staff Online
Statistics

Members:
55,305

Discussions:
107,879

Messages:
1,341,767

Users Online:
3195

Latest Member: SabinaBeak
Advertisement

BE SOCIAL

FAQ | SITEMAP

All times are GMT. The time now is 01:54 AM.

BestHostingForums.com is a great place to learn about Internet Marketing Online, SEO Techniques, Search Engine Marketing and resources for Web Development.