APEX

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Checksum manipulation by client possible - Apex security question

skahlertAug 18 2010 — edited Aug 18 2010

Hello guys! I was just wondering if the calculated checksum in session state protection can be calculated by a client.
Let's assume a hacker modifies the criteria in the url and provides a matching checksum he would succeed in hacking the app.

I was not able to find something about successful checksum manipulation but am not sure whether it is absolutely impossible or not!

Thanks for your answers!

Seb

This post has been answered by Prabodh on Aug 18 2010

Jump to Answer

Locked Post

New comments cannot be posted to this locked post.

Locked on Sep 15 2010

Added on Aug 18 2010

#apex-discussions

5 comments

840 views