[snip] How secure is it to save a password in $_SESSION. i.e. $_SESSION['password'] is it safe and is it practical? [/snip] I would think it neither safe nor practical. Once a user has logged in having the password in SESSION would be useless. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php