Re: Some Advice

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: php-general@xxxxxxxxxxxxx
Subject: Re: Some Advice
From: php@xxxxxxxxxxxxx
Date: Tue, 25 Jun 2013 14:32:24 +0200
In-reply-to: <2E3F50FD-FC7C-404A-A55F-623AF4166FBC@adex-intl.com>
User-agent: Mutt/1.5.20 (2009-06-14)

You should at least check the IP of the client additionally to have some prove
it is the same client you gave the session-ID.

And it is better to put the session-ID in a POST-field than in GET. So it
es very unlikely someone passes a session ID around accidently.

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Follow-Ups:
- Re: Some Advice
  - From: Samuel Lopes Grigolato
- Re: Some Advice
  - From: Alex Pojarsky

References:
- Some Advice
  - From: Floyd Resler

Prev by Date: Re: Some Advice
Next by Date: Re: Some Advice
Previous by thread: Re: Some Advice
Next by thread: Re: Some Advice
Index(es):
- Date
- Thread

[Index of Archives] [PHP Home] [Apache Users] [PHP on Windows] [Kernel Newbies] [PHP Install] [PHP Classes] [Pear] [Postgresql] [Postgresql PHP] [PHP on Windows] [PHP Database Programming] [PHP SOAP]

Powered by Linux