Is it possible to have duplicates of the same POST data over HTTPS?

advertisements

For example.. the POST request contains command to the server to give User X $10. It's sent via HTTPS so all is good from man-in-middle attack.

However, is it possible for attacker to sniff the packet (ignoring the contents), and then create duplicates of the same packet, and then send multiple copies of it to the server as if they're coming from a legit source.

If one POST request increments user X account balance by $10, wouldn't this kind of exploit enable user X account to have $100 if the same packet is retransmitted 10 times?

Does HTTPS has some token check mechanism to prevent this kind of attack?


Does HTTPS has some token check mechanism to prevent this kind of attack?

SSL connections are save against replay attacks.