weird isn’t it? Here are the complete headers that are sent by IIS and the ones sent by the browser (i believe it’s an ajax call): The set-cookie part seems weird to me; data is overwritten there. Also, what’s the point of setting cookies when the password is wrong?
Response headers
Server Microsoft-IIS/5.0
Date Fri, 15 Jun 2007 11:57:25 GMT
MicrosoftOfficeWebServer 5.0_Pub
X-Powered-By ASP.NET, PHP/4.3.8
Connection close
Content-Type text/html
Set-Cookie SN466979d31b777=89b8d0c4922e12281b2e5f602a93ffbe; path=/ SN466979d31b777=89b8d0c4922e12281b2e5f602a93ffbe; path=/speeltuin/modx/
Expires Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma no-cache
Request Headers
Host intranet
User-Agent Mozilla/5.0 (Windows; U; Windows NT 5.1; nl; rv:1.8.1.4) Gecko/20070515 Firefox/2.0.0.4
Accept text/javascript, text/html, application/xml, text/xml, */*
Accept-Language nl,en-us;q=0.7,en;q=0.3
Accept-Encoding gzip,deflate
Accept-Charset ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive 300
Connection close
X-Requested-With XMLHttpRequest
X-Prototype-Version 1.5.0_rc1
Content-Type application/x-www-form-urlencoded
Referer http://intranet/speeltuin/modx/manager/
Content-Length 62
Cookie SN466979d31b777=89b8d0c4922e12281b2e5f602a93ffbe; sessionid=9e61757bd8cc86274ceec99394350a8f; username=erikp; style=Light Green; SN466979d31b777=89b8d0c4922e12281b2e5f602a93ffbe
Pragma no-cache
Cache-Control no-cache
this is in the post-information (the password is different):
ajax 1
password supersecret
rememberme 1
username admin