On Mon, April 9, 2007 9:45 am, Davi wrote: > Sessions are stored in the temporary's server folder... So... If I > known my > session ID and where it's stored, I can do something... If your web-visitor can access and edit the session files stored in the server temp folder, you have *MUCH* bigger problems in any real-world situation! You might as well give your server away, since you no longer own it, really. -- Some people have a "gift" link here. Know what I want? I want you to buy a CD from some indie artist. http://cdbaby.com/browse/from/lynch Yeah, I get a buck. So? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
