Cookies are insecure, no matter what you do. While they aren't that dangerous when used for things like storing preferences on personalized Web pages they are also employed to authenticate users who are shopping online. It's these so-called 'authentication cookies' that are often exploitable. |
It's the kind of thing a bored teenager could do in a few hours. |
Much Web security rests on illusion and hope. |