October 12, 2005

It sounds unlikely to me, but....

A question for any of the Munuvian Computer Literati--is there such a thing as a "cookie grabber"? i.e. a website that can read your cookies for a different website and use them against you? It sounds like an Urban Legend to me, but I haven't been able to track down any confirmation or disputing info.

So, say that I went shopping at JCPenney.com. (Assume for this exercise that I were silly enough to be using IE). Could they "grab" the cookies that, say, Amazon.com sets, and somehow magically deduce my password and order the complete works of Conway Twitty boxed set using my identity?

Thanks for putting up with me!

Posted by Susie at October 12, 2005 02:26 AM | TrackBack
Comments
#1

Not unless your browser is broken. And even IE isn't that broken.

Posted by Pixy Misa at October 12, 2005 06:19 AM
#2

Also cookies don't tend to contain info like UN and password - they'll more often use a unique ID which is hashed against your account to keep things nice and secure

Posted by Rob at October 12, 2005 01:41 PM
Live Comment Preview
Post a comment









Remember personal info?