Java Interview Questions » Session Interview Questions

Define Session Hijacking

Ramakrishna — Sat, 20 Sep 2008 17:21:17 +0000

Question: What is session hijacking?
Answer: If you application is not very secure then it is possible to get the access of system after acquiring or generating the authentication information. Session hijacking refers to the act of taking control of a user session after successfully obtaining or generating an authentication session ID. It involves an attacker using captured, brute forced or reverse-engineered session IDs to get a control of a legitimate user’s Web application session while that session is still in progress.

Difference between session.save() , session.saveOrUpdate() and session.persist()

Ramakrishna — Sat, 20 Sep 2008 17:20:07 +0000

Q) Difference between session.save() , session.saveOrUpdate() and session.persist()?
A)
–> session.save() : Save does an insert and will fail if the primary key is already persistent.

–> session.saveOrUpdate() : saveOrUpdate does a select first to determine if it needs to do an insert or an update.
Insert data if primary key not exist otherwise update data.

–> session.persist() : Does the same like session.save().
But session.save() return Serializable object but session.persist() return void.
session.save() returns the generated identifier (Serializable object) and session.persist() doesn’t.
For Example :
if you do :-
System.out.println(session.save(question));
This will print the generated primary key.
if you do :-
System.out.println(session.persist(question));
Compile time error because session.persist() return void.

Difference between session.save() and session.saveOrUpdate()

Ramakrishna — Sat, 20 Sep 2008 17:19:52 +0000

Difference between session.save() and session.saveOrUpdate()?

session.save() – Insert data into the table
session.saveOrUpdate()- Insert data if primary key not exist otherwise update

Random Posts

Difference between session.save() and session.saveOrUpdate()

Ramakrishna — Sat, 20 Sep 2008 17:19:37 +0000

Q) Difference between session.save() and session.saveOrUpdate()?
A)
session.save() – Insert data into the table
session.saveOrUpdate()- Insert data if primary key not exist otherwise update

Random Posts

Difference between session.save() and session.saveOrUpdate()

Ramakrishna — Sat, 20 Sep 2008 17:19:16 +0000

Q) Difference between session.save() and session.saveOrUpdate()?
A)
session.save() – Insert data into the table
session.saveOrUpdate()- Insert data if primary key not exist otherwise update

Random Posts

Explain session destroy in Servlets

Ramakrishna — Tue, 02 Sep 2008 18:30:03 +0000

Question: How you can destroy the session in Servlet?
Answer: You can call invalidate() method on the session object to destroy the session. e.g. session.invalidate();

Random Posts

Explain Session tracking using Servlet

Ramakrishna — Tue, 02 Sep 2008 18:29:04 +0000

Question: How to track a user session in Servlets?
Answer: The interface HttpSession can be used to track the session in the Servlet. Following code can be used to create session object in the Servlet: HttpSession session = req.getSession(true);

Define Session Migration

Ramakrishna — Tue, 02 Sep 2008 18:27:46 +0000

Question: What is Session Migration?
Answer: Session Migration is a mechanism of moving the session from one server to another in case of server failure. Session Migration can be implemented by:
a) Persisting the session into database
b) Storing the session in-memory on multiple servers.

Random Posts

Define Session Hijacking

Ramakrishna — Tue, 02 Sep 2008 18:26:52 +0000

Advantage of Cookies over URL

Ramakrishna — Tue, 02 Sep 2008 18:23:25 +0000

Question: What are the advantage of Cookies over URL rewriting?
Answer: Sessions tracking using Cookies are more secure and fast. Session tracking using Cookies can also be used with other mechanism of Session Tracking like url rewriting.

Cookies are stored at client side so some clients may disable cookies so we may not sure that the cookies may work or not.

In url rewriting requites large data transfer from and to the server. So, it leads to network traffic and access may be become slow.

Java Interview Questions » Session Interview Questions

Define Session Hijacking

Related Post

Difference between session.save() , session.saveOrUpdate() and session.persist()

Related Post

Difference between session.save() and session.saveOrUpdate()

Random Posts

Difference between session.save() and session.saveOrUpdate()

Random Posts

Difference between session.save() and session.saveOrUpdate()

Random Posts

Explain session destroy in Servlets

Random Posts

Explain Session tracking using Servlet

Related Post

Define Session Migration

Random Posts

Define Session Hijacking

Related Post

Advantage of Cookies over URL

Random Posts