When you visit a Web site, your browser program stores copies of the pages you visit in a hard disk or memory (RAM) cache. When you click the Back or Forward button, the browser loads the copy of the page that it saved in the cache, thereby eliminating the time it would take to contact the server and reload the entire page.
Caching protected Web pages opens a serious security hole. If a tokenholders browser is left unattended, an unauthorized person can view pages that are stored in the caches long after the tokenholder has quit his browsing session. ACE/Agent for Netscape Servers can help to minimize these sorts of replay attacks by allowing you to prevent tokenholders from disk caching protected pages.
Note: This feature does not prevent
pages from being cached in memory (RAM). Instruct tokenholders to
never leave a running Web browser unattended.
To prevent users from disk caching protected pages: