GeekInterview.com
  I am new, Sign me up!
 
GeekInterview.com  >  Interview Questions  >  Testing
Go To First  |  Previous Question  |  Next Question 
 Testing  |  Question 345 of 413    Print  
Security Testing Session Hijacking
What is session hijacking? Explain with an example?


  
Total Answers and Comments: 2 Last Update: April 09, 2009     Asked by: chaithrashenoy 
  
 Sponsored Links

 
 Best Rated Answer

No best answer available. Please pick the good answer available or submit your answer.
March 10, 2008 07:27:28   #1  
sunitha Member Since: October 2005   Contribution: 8    
RE: Security Testing Session Hijacking
security testing is checking the application for unauthorised access in the application.session hijacking is capturing the URL of perticular application and pasting that URL on to anothor new window and click on go will go to that particular application page without logging in their perticular account.
 
Is this answer useful? Yes | No
April 09, 2009 05:35:19   #2  
mathan_vel Member Since: December 2007   Contribution: 422    
RE: Security Testing Session Hijacking
Session Hijacking is not but one the secured informations are stealed from using the other session in the other users browser URL..

for exampls if a user sign in a Banking web based application another user recorded the same url with directly from Url or indirectly thru mails. and use the same url in his browser and access the user right.. which one is Severe on the Security basis...

this can be ensure that
1) the copied url should be expired once it used in other system(IP map)
2) application should not show any information while Seesion Hijacking.
3) session should expiered with in a time period intervals.
4) application should end session if the page is refreshed

 
Is this answer useful? Yes | No

 Related Questions

Latest Answer : Pairwise Testing is performed as we get more faults when two fields (pairs) intreact each other. For Example: There are two fields say "City" and "Zip Code". Below can be some pairs to pass into these fields:City: Delhi, Mumbai, KolkataZip Code: 7647647,3423434,253454Say ...
Read Answers (12) | Asked by : raja
Latest Answer : There are three types of Testing Techniques1) Equivalence partitioning2) Boundary value analysis3) Error guessing ...
Read Answers (18) | Asked by : Subhash
Latest Answer : Mainly 3 types of tests cover under the system testing1.usability testing.2.Functional testing.3.Non-functional testing.Again Usability testing is classified into 2 types1.User interface testing2.Manual testing.Functional testing is classified into 2 ...
Read Answers (6) | Asked by : omkarqa
Latest Answer : Select teh basic functionality test cases .Identify the End to end test cases to test required functionality to cover the main requirement.Prepare the different types of test data to test to achive customer req..Check the Actual results with expected ...
Read Answers (7) | Asked by : omkarqa
Latest Answer : ad-hoc testing doesn't follow any metodologies whereas exploratory will follow and get the information from previous and past experiences of the projects. ...
Read Answers (10) | Asked by : sateesh
Latest Answer : We cant say which tool is comfortable for desktop or web application. It is purely depending on the business people that is client.If client has not specified the tool, then high level management people like Project Director and Project Manager decide ...
Read Answers (4) | Asked by : swapna
Can any one answer to this question  
Latest Answer : Following are the two primary goals of testing.1) The application should be as per the customer requirement.2) It should be defect free and easy to maintain. ...
Read Answers (19) | Asked by : Veman
some one Reply for this question  
Latest Answer : Testing aimed at showing software does not work. Also known as "test to fail".Shruti Kulkarni ...
Read Answers (26) | Asked by : veman
Latest Answer : GUI testing is the part of web testing as well as desktop testingIn GUI testing we check the graphical user interface that is Font size, font colour, links, labels etc.Webtesting means it is an 3 tier architecture,here we check the performance of the ...
Read Answers (4) | Asked by : chaitanya
Latest Answer : I would consider the following when testing a website:FUNCTIONALITY 1) Graphic User Interface (GUI)     a) Text             -font sizes             ...
Read Answers (5) | Asked by : Priya khaire

 Sponsored Links

 
Related Articles

Security enhancements in SQL Server 2005

The trustworthy computing initiative has contributed greatly to help microsoft improve customer experience. A number of customer needs on security have been addressed. 1. Restricting user access to sql server 2. Disabling services and restricting service configuration 3. Reducing the surface are aof
 

ITIL Security Management

What is ITIL Security Management? The process of ITIL Security Management describes the structure model of security in the management organization. It is based on the Code of Practice for Information Security Management that is also often known as ISO/IEC 17799. Security Management is basically inf
 

Testing and Integration

Once the software is complete, it will go though rigorous testing before its actual integration.  In this article we will take a look at different types of software testing and also different types of integration. With the diversity of business setting and software development models, it al
 

The Interview Snafu

How to turn someone else’s mistake to your advantage Your dream job is about to become reality. A recruiter gave you the heads up about the perfect position at Humungous Conglomerate, Inc. You went through five interviews as well as a battery of psychological tests mandated by their HR de
 

Effective Controls for Attaining Continuous Application Security

Effective Controls for Attaining Continuous Application Security Throughout the Web Application Development Life Cycle Given the choice, every organization would want secure Web sites and applications from the Web application development phase all the way through the software development life cycle.
 

Winning a Job Interview with a Winning Resume

Does your resume unlock your potential, take your skills to the highest level and win you the interview and the job you want now? The job market today is highly competitive and even if you think you have what it takes to get an interview you won’t get over the line without a polished, prof
 

Top 10 Application Security Vulnerabilities in Web.config Files - Part One

These days, the biggest threat to an network security comes from its public Web site and the Web-based applications found there. Unlike internal-only network services such as databases-which can be sealed off from the outside via firewalls-a public Web site is generally accessible to anyone who wan
 

Top 10 Application Security Vulnerabilities in Web.config Files - Part Two

Some of the most common and dangerous application security vulnerabilities that exist in ASP.NET Web-based applications come not from the C# or VB.NET code that make up its pages and service methods, but instead from the XML code that makes up its Web.config files. Incorrect configurations can open
 

Security and IT Certification

Learning about different types of IT Certification is the first step to becoming successful with different types of technology. IT Certification is first divided into different groups.  Each of these groups will have certain focuses in relation to technology and how it can be used.&nbsp
 

Client-Server Testing Technology

Client Server Testing Technology Client Server Software Client server software requires specific forms of testing to prevent or predict catastrophic errors Servers go down records lock I O Input Output errors and lost messages can really cut into the benefits of adopting this network technology Test
 

About Us -  Privacy Policy -  Terms and Conditions -  Contact -  Ask Question -  Propose Category -  Site Updates 

Copyright © 2005 - 2009 GeekInterview.com. All Rights Reserved

Page copy protected against web site content infringement by Copyscape