ASP.NET Function of the Day: SessionId is "Too Legit to Quit".

So I was poking around the source code for how ASP.NET initiates session state etc... and noticed this method of the SessionId class. You gotta love the naming of this one. Steve McConnell (via Code Complete) would probably have recommended something like "IsValid" but he has no imagination nor flair.

internal static bool IsLegit(string s)

    bool flag1;

    if ((s == null) || (s.Length != 0x18))

        return false;

try

        int num1 = 0x18;

        while (--num1 >= 0)

            char ch1 = s[num1];

            if (!SessionId.s_legalchars[ch1])

                return false;

        flag1 = true;

    catch (Exception)

        flag1 = false;

    return flag1;

MC Hammer would be proud!

What others have said

No comments posted yet.

What do you have to say?

Title:

Name:

Email: (never displayed) (will show your gravatar)

Website:

Comment: Allowed tags: blockquote, a, strong, em, p, u, strike, super, sub, code

Please add 1 and 6 and type the answer here:

About Me

The author of this blog is a megalomaniacal software developer with delusions of... well, uh, just delusions.

By day, I am a Senior Program Manager at Microsoft. By night I lead the Subtext Project, an Open Source blog engine.

To learn more, keep reading...

For non-geek friends and family, check out my other blog.

You’ve Been Haacked

ASP.NET Function of the Day: SessionId is "Too Legit to Quit".

What others have said

What do you have to say?

About Haacked

Tag Cloud

Badges

Recent Posts

Recent Comments

About Me