发表新帖
发表新帖

Why set a JSP page session = “false” directive?

后端 未结
关注
5 1351
夕颜
夕颜 2020-11-29 22:25

I was wondering when you would want to set the following page directive in a JSP:

<%@ page session=\"false\" %>

I know that it prevents th

5条回答
  • 甜味超标
    甜味超标 (楼主)
    2020-11-29 22:38

    This setting is also a security measure, as it also avoids a potential DoS attack. Think about a simple script that iteratively wgets the JSP: it will generate a lot of sessions in few seconds.

    0 讨论(0)
 看不清?
提交回复
热议问题