How useful are ASP Cookies really.... and is its use discouraged in terms of storing data in the same way that client side cookies are not encouraged?

Whats the essential difference server side and client side cookies? Server side - multidimensional and client side - 1D??? :confused:

PLeae shed some light!

errm :confused:


cookies are the same if run from client side or server side, but both store simple text data on the client's machine, only if they are enabled

this is unencrypted so people could potentially change their cookies manually and log in as someone else (or whatever the cookie is storing) and not everyone has cookies enabled... some good login scripts store things such as a password in cookies so that the password is validated each time a page is loaded so the login details cant be changed (and if they are the user pretty much has to have the password anyway) however, anyone can read this as its just stored as a text file. cookies should, therefore, usually be encrypted (some good encryption tutorials on 4guysfromrolla.com)

also, if a large amount of data is stored, this has to be transfered between the client and the server every time a cookie is set or requested

however, they are much more useful (although less secure) than sessions as they dont clog up the server

are you talking about cookies stored on the computer? or per session cookies which aren't stored? The cookies that aren't stored are basically using session variables. Once the session is ended the cookie is killed.

Nah... I meant the cookies that ghell was talking about. Thanks alot for the insight tho!