WARNING: This site is intended for online use only; mass-downloading of pages degrades the server and is prohibited.
If you attempt to use tools to mass-download the site, you may be blocked permanently by automated software.
If you want to read this CertiGuide offline, please use one of the links on the left to purchase a convenient PDF copy. Thank you.

Like this CertiGuide? Get it in PDF format!
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Also available: 300-question Security+ practice test!
Get It Here!

Custom Search






Table Of Contents  CertiGuide to Security+
 9  Chapter 2:  Communication Security (Domain 2.0; 20%)
      9  2.3  The Web
           9  2.3.4.2  ActiveX

Previous Topic/Section
2.3.4.3  Buffer Overflows
Previous Page
Pages in Current Topic/Section
1
2
3
Next Page
 2.3.4.5  Signed Applets
Next Topic/Section

2.3.4.4  Cookies
(Page 2 of 3)

Cookies and Privacy



A generic problem with cookies is that every time your browser sends a cookie back to a server, it’s giving someone information about you or your browsing habits. In the case of an e-commerce site using the cookie to look up the contents of your shopping cart from the last time you visited the site; this might not be something you mind. In the case of advertisers’ sites using cookies to inform a service like Doubleclick which sites you visit, so that they can construct a more complete profile of your browsing habits, this might be something you mind. To look at it from the other perspective, if you are a webmaster and you are using that sort of tactic to track users’ activities, you’re taking a risk as well –your user base may someday deluge your organization with bad publicity for its privacy infringing techniques.

Although most cookies are of the harmless shopping-cart-pointer variety, there are a number of services out there like Doubleclick that use them to learn more about you. To combat this, browsers offer a number of cookie management security features. For example, you can:

  • Delete some or all of your cookies

  • Automatically accept or reject cookies from certain sites of your own choosing

  • Disable all use of cookies by your browser (which leads to frustration, since many sites don’t work right without them)

  • Have your browser warn you when it is about to send a cookie to a server, and give you the option of not sending it (which may, as in the above case, lead to the site not working properly because it insists on receiving a cookie from your browser)

  • Choose to save cookies only for the duration of this web browsing session (as opposed to permanently on disk)

  • Disallow cookies that are to be sent to sites other than the main one you’re browsing (which protects against the kind of cross-site tracking done by Doubleclick and its ilk)

Previous Topic/Section
2.3.4.3  Buffer Overflows
Previous Page
Pages in Current Topic/Section
1
2
3
Next Page
 2.3.4.5  Signed Applets
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $


Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.