* Robert Leverington <robert(a)rhl.me.uk> [Fri, 24 Sep 2010 06:57:03
+0100]:
On 2010-09-24, Dmitriy Sintsov wrote:
One probably can rename it to another temporary
name? Then move to
final
> location during the next request, according to previousely passed
> cookie?
>
> Speaking of cookies, there are millions ways of looking at them,
FF's
> WebDeveloper extension, HTTP headers extension,
Wireshark
application
to
name just few. Absolutely non-secure, when
unencrypted.
Session data is not stored in cookies, only a unique session
identifier
is passed to the client.
I think the question wasn't about the session data (part of which
(username,id) is passed via cookies, but you're right, only a hash), but
about uploading the file in few "stages".
Dmitriy