[F21_WebFund] Lab1 資工二乙 409262413 高羿杉

Group content visibility: 
Use group defaults

(1) Use Wireshark to capture HTTP messages, including GET, POST, Set-Cookie, and Cookie header. Your report should contain the target URLs, captured messages, and anything you learned from this lab.

Target URLshttp://stu.fju.edu.tw/stusql/SingleSignOn/StuScore/SSO_stu_login.asp?cry...

1.GET 很快就能找到,資料容易外洩,安全性低

2.POST 相對GET較安全,需要較長的時間才能看到資料

3.COOKIE 存取使用者的資料和設定

4.SET-COOKIE 告知瀏覽器設置Cookie