Dear Forums,
Kindly advice me professionally because, am getting more confused on what to do about my application that needed to be online very soon.
The fear is about Session and Authentication.
Here are my questions.
1. Must a Page Authentication be done by Session or Cookie. If not what are the other options.
2. How secured is Session without encoding.
3. Must you encode Sessions at all time and if not what type of Session.
4. Is it dangerous to pass one Session on several Page.
5. What about locking a Session to an IP ......(tips needed)
5. Session Security tips please.
Thank You All.
Williams.
