Rouven: Session wird ungültig durch falsches Bild

Beitrag lesen

SELF-Forum

Session wird ungültig durch falsches Bild

Rouven
Informationen zu den Bewertungsregeln

Hello,

irgendwas ist da bei dir/deinem Server faul. Ich hab mir mal die Header ausgeben lassen, vergleich mal die Session-ID, die im Cookie abgelegt wird:

http://www.michaelsauter.net/test/phpsession/datei1.php

GET /test/phpsession/datei1.php HTTP/1.1
Host: www.michaelsauter.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.8.1.9) Gecko/20071025 Firefox/2.0.0.9
Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
Accept-Language: de-de,de;q=0.8,en-us;q=0.5,en;q=0.3
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://www.michaelsauter.net/test/phpsession/datei2.php
Cookie: c_cmsy_lang=de; PHPSESSID=1766aca2237f9ed150eb9a71f59ac859; c_cmsy_lang=de

HTTP/1.x 200 OK
Transfer-Encoding: chunked
--------------: ---
----------------: ----
Date: Wed, 14 Nov 2007 21:03:16 GMT
Server: Apache/1.3.36 (Unix) PHP/4.4.2 FrontPage/5.0.2.4803 mod_fastcgi/mod_fastcgi-SNAP-0404142202 mod_ssl/2.8.27 OpenSSL/0.9.6i
X-Powered-By: PHP/4.4.2
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Connection: keep-alive
----------------------------------------------------------
http://www.michaelsauter.net/test/phpsession/sdf.jpg

GET /test/phpsession/sdf.jpg HTTP/1.1
Host: www.michaelsauter.net
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de; rv:1.8.1.9) Gecko/20071025 Firefox/2.0.0.9
Accept: image/png,*/*;q=0.5
Accept-Language: de-de,de;q=0.8,en-us;q=0.5,en;q=0.3
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 300
Connection: keep-alive
Referer: http://www.michaelsauter.net/test/phpsession/datei1.php
Cookie: c_cmsy_lang=de; PHPSESSID=1766aca2237f9ed150eb9a71f59ac859; c_cmsy_lang=de

HTTP/1.x 404 Not Found
Transfer-Encoding: chunked
--------------: ----
----------------: ----
Date: Wed, 14 Nov 2007 21:03:16 GMT
Server: Apache/1.3.36 (Unix) PHP/4.4.2 FrontPage/5.0.2.4803 mod_fastcgi/mod_fastcgi-SNAP-0404142202 mod_ssl/2.8.27 OpenSSL/0.9.6i
X-Powered-By: PHP/4.4.2
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=44b39cc5510ea51c7f6b0d9ceb84cbcd; path=/
Set-Cookie: c_cmsy_lang=de; expires=Friday, 14-Dec-07 21:03:16 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
----------------------------------------------------------

Das Image setzt ein Cookie unter einer anderen Session-ID für die gleiche Domain.

MfG
Rouven

--
-------------------
When the only tool you've got is a hammer, all problems start to look like nails.
Beitrag melden
Informationen zu den Bewertungsregeln