Thats why I said CAN, since it is unreliable
Bastien
From: "John Holmes" <holmes072000@xxxxxxxxxxx>
To: "Bastien Koert" <bastien_k@xxxxxxxxxxx>,<stuart4m@xxxxxxxxx>,<m.saleh.eg@xxxxxxxxx>
CC: <jasper@xxxxxxxxxxxxx>,<php-db@xxxxxxxxxxxxx>
Subject: Re: Passing URL parameters, how to hide
Date: Tue, 21 Sep 2004 10:22:32 -0400
From: "Bastien Koert" <bastien_k@xxxxxxxxxxx>
You can also validate the IP of the user for the session. Since many people are still on dialup, they do not have a static IP and therefore its of little value to store...but it should remain the same for the session.
IP addresses are pretty much worthless unless you're on an intranet where you can control them.
The IP address of a user can change in the middle of a session and multiple users can have the same IP address (using proxies, for example).
I wouldn't rely on them for anything.
---John Holmes...
-- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
_________________________________________________________________
Take advantage of powerful junk e-mail filters built on patented Microsoft® SmartScreen Technology. http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines Start enjoying all the benefits of MSN® Premium right now and get the first two months FREE*.
-- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
