How to track and eliminate session abuse?

Question

How to track and eliminate session abuse?

I am sure that in the past there were developers who brutally abused the state of my bad friend ASP.NET. The session would like to help keep track of things between requests, but can only do so much! Please help me relieve his pain so that he will happily work with us.

Does anyone know a tool that can control session sizes in multiple memory sessions? We are currently connecting IP affinity to the load ballaster because the sessions are so large that we want to keep them in memory. I want to be able to control both the average session size and the individual sessions that applications access them and what is stored in the session.

This heartless, uncontrolled abuse of session state should stop. Together we can find the answer.

+5

performance .net asp.net session session-state

Scott holden Jan 6 '09 at 17:49

source share

2 answers

Richard L · Answer 1 · 2009-01-06T21:00:11+0000

I think you could implement something like this custom session provider and add some monitoring instead of zipping. This, of course, will make the session object larger and slower, but it can give you the necessary monitoring.

If you use SQL as the session provider, you can track it in sqlserver, but of course the sql server slows down session processing.

Eppz · Answer 2 · 2009-01-06T20:15:31+0000

, . , .

, , , . (, )

How to track and eliminate session abuse?

More articles: