Barry Frost

This is Barry Frost’s personal website.

Tagged #cookie

Panopticlick

EFF backed project that uses a combination of the standard public data reported by your browser to create a trackable fingerprint, even if cookies are disabled.

evercookie - virtually irrevocable persistent cookies

Uses a combination of cookies, LSOs (Flash), Silverlight Isolated Storage, web history, cache, etc. to create a lasting persistent “cookie”. Not sure how permanent this will be but could be useful.

Preventing CSRF and XSRF Attacks

“When a user visits a site, the site should generate a (cryptographically strong) pseudorandom value and set it as a cookie on the user’s machine. The site should require every form submission to include this pseudorandom value as a form value and also as a cookie value.”

caboose new controversial default rails session storage: cookies

Discussion on the rights and wrongs of storing session data in cookies