> > Why? If the user accepts the cookie, then they don't have a > > problem with it. If the user doesn't then it uses other > > functionality (URL re-writing). I don't see any problem with > > that. Leave it up to the user to decide how they want PHP to > > keep track of their session. > > Well because cookies are a security flaw, aren't day? Only if you make them one. :-) Cookies by in and of themselves are harmless. Just treat what ever you store in a cookie as if anyone could see it (because they probably can).. -Mitch ---------------------------(end of broadcast)--------------------------- TIP 4: Don't 'kill -9' the postmaster
