Remember when there was no conventional logout option on Amazon? You’ve probably also noticed that Google and Microsoft sites try to keep you logged in, and services like Discord hide the logout somewhere hard to find
Remember when there was no conventional logout option on Amazon? You’ve probably also noticed that Google and Microsoft sites try to keep you logged in, and services like Discord hide the logout somewhere hard to find
deleted by creator
Session ID’s could be stolen (XSS, malware) or guessed (bad implementation of the id generation). Sites that want you to be logged-in all the time know of that risk and will use (invasive) techniques to assess how likely it is that the use of a given session is legit. (GeoIP, Fingerprinting)
deleted by creator