--- Peter Lauri <peter@xxxxxxxx> wrote: > Can someone from outside set a $_SESSION variable with some > "hacker" techniqe? For all practical purposes, no. Session data is kept on the server and therefore less exposed and less vulnerable than other data. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly HTTP Developer's Handbook - Sams Coming February 2005 http://httphandbook.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
