On 29 November 2002, Ray Drew said:
> I've added security to a web app (intranet not internet) using session
> management as described on the Quixote Session Management document.

I think you mean you've added authentication and access control.  Last
time I checked, you can't just turn a knob to make a web application
secure.  ;-) (Or should that be ";-("?)

> However, it doesn't work when accessing a Windows NT4 server from my laptop
> also, via a broadband/vpn connection. I suspect the cookie isn't being set
> but I haven't been able to check (the quixote cookie doesn't appear to be in
> my usual cookie folder even when I know one exists!)

My standard solution when debugging cookie problems (or just about
anything else, for that matter) is to throw a packet tracer at it.  Take
a look at Ethereal (www.ethereal.com) -- it lets you capture all the
traffic between client and server.  Totally cool.

        Greg
--
Greg Ward - software developer                gward@mems-exchange.org
MEMS Exchange                            http://www.mems-exchange.org