2000-05-15 22:00:35+02 by Dan Lyke 0 comments
Internet Explorer cookies are world readable. This is beyond moderately disturbing as the cookie spec says we as programmers can depend on this not happening, so not only does this screw user security over totally, it can even break correct code. For programmers, this is also a good reason to never store a password in a cookie.