搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Option to Delete Cookies Is Missing, yet still logged in?

  • 8 个回答
  • 0 人有此问题
  • 3 次查看
  • 最后回复者为 zach6

more options

I Cleared the cookies for this website, and im in private browsing mode, and yet I'm still logged in when I refresh. I also have all cross site cookies blocked I believe (see screenshots), so i'm wondering why is Firefox not logging me out how am I still logged in?

I also tried switching to Strict mode in the firefox settings, still logged in!

See other screenshots: https://imgur.com/a/VSU6o7C

I Cleared the cookies for this website, and im in private browsing mode, and yet I'm still logged in when I refresh. I also have all cross site cookies blocked I believe (see screenshots), so i'm wondering why is Firefox not logging me out how am I still logged in? I also tried switching to Strict mode in the firefox settings, still logged in! See other screenshots: https://imgur.com/a/VSU6o7C
已附加屏幕截图

所有回复 (8)

more options

(By the way the option for cookies to clear was there originally, but I deleted them, i cleared them. So the website does use cookies, but i cleared them and now i am still logged in)

more options
more options

Terry said

Have a look at this article. https://support.mozilla.org/en-US/kb/common-myths-about-private-browsing

I probably should have left out the reference to private browser mode. It is not about that, I was simply pointing out that there's extra strict tracking protocols from the traditional browsing mode.

But either way regardless, let's say the tracking Protocols are the same, on both private browsing mode and regular browsing mode after I clear the cookies for this site, you should be logged out. When you manually clear the cookies in firefox, But I'm not getting logged out. So I'm trying to figure out what's going on

more options

If you do not log out but only clear the cookies, then the server still has your session ID that might be send as part of POST data. Logging out is the only way to invalidate a session ID and ensure that the server no longer sees you logged in. You can possibly check the Network Monitor.

more options

cor-el said

If you do not log out but only clear the cookies, then the server still has your session ID that might be send as part of POST data. Logging out is the only way to invalidate a session ID and ensure that the server no longer sees you logged in. You can possibly check the Network Monitor.

Wouldnt Sessions ID be using session Cookies though? But if not, when you clear data, it includes "Site Data", not just cookies.

So you would think it would clear all of the session data for the site. "Clear Cookies and site data"

(I read through the network monitor and a couple different tutorials on it. But it's a bit over my head. I'm not sure what I should look for in it. I do see the cookies tab but I don't know about anything else.)

more options

Interesting, after I clear all session data and session cookies, I find in the network log that they are still being accessed and still there? Strange

more options

It could be that new cookies and a new session ID have been created because you visited the website once again. The point would be if the session ID hasn't changed from before the deletion (i.e. you resume that last session) or a new session ID got created.

more options

cor-el said

It could be that new cookies and a new session ID have been created because you visited the website once again. The point would be if the session ID hasn't changed from before the deletion (i.e. you resume that last session) or a new session ID got created.

hmm, interesting. I Would think once you delete the cookies and refresh, it would need those prior cookies (now deleted) in order to recreate the session ID. But I guess not.