History
Session hijacking was not possible with early versions of HTTP.
HTTP protocol versions 0.8 and 0.9 lacked cookies and other features necessary for session hijacking. Version 0.9beta of Mosaic Netscape, released on October 13, 1994, supported cookies.
Early versions of HTTP 1.0 did have some security weaknesses relating to session hijacking, but they were difficult to exploit due to the vagaries of most early HTTP 1.0 servers and browsers. As HTTP 1.0 has been designated as a fallback for HTTP 1.1 since the early 2000s -- and as HTTP 1.0 servers are all essentially HTTP 1.1 servers the session hijacking problem has evolved into a nearly permanent security risk.
The introduction of supercookies and other features with the modernized HTTP 1.1 has allowed for the hijacking problem to become an ongoing security problem. Webserver and browser state machine standardization has contributed to this ongoing security problem.
Read more about this topic: Session Hijacking
Famous quotes containing the word history:
“It is true that this man was nothing but an elemental force in motion, directed and rendered more effective by extreme cunning and by a relentless tactical clairvoyance .... Hitler was history in its purest form.”
—Albert Camus (1913–1960)
“English history is all about men liking their fathers, and American history is all about men hating their fathers and trying to burn down everything they ever did.”
—Malcolm Bradbury (b. 1932)
“Every literary critic believes he will outwit history and have the last word.”
—Mason Cooley (b. 1927)