A question for any of the Munuvian Computer Literati--is there such a thing as a "cookie grabber"? i.e. a website that can read your cookies for a different website and use them against you? It sounds like an Urban Legend to me, but I haven't been able to track down any confirmation or disputing info.
So, say that I went shopping at JCPenney.com. (Assume for this exercise that I were silly enough to be using IE). Could they "grab" the cookies that, say, Amazon.com sets, and somehow magically deduce my password and order the complete works of Conway Twitty boxed set using my identity?
Thanks for putting up with me!
Posted by Susie at October 12, 2005 02:26 AM | TrackBackNot unless your browser is broken. And even IE isn't that broken.
Posted by Pixy Misa at October 12, 2005 06:19 AMAlso cookies don't tend to contain info like UN and password - they'll more often use a unique ID which is hashed against your account to keep things nice and secure
Posted by Rob at October 12, 2005 01:41 PM