Answer:
By default, asp.net uses cookies to store session id for the logged in user. But there is an option in every browser to disable cookies. If cookies are disabled, then any website will not be able to create cookies on user's machine.
When cookies are disabled, then session Id is gets appended in the URL and passed to the server. Server decodes it and fulfill the requested page.
Cookie Munging is nothing but how ASP.NET manages session variables without cookies.
Thanks,
Virendra Dugar
Asked In: Many Interviews |
Alert Moderator