Oops. Forgot to remove the Re: - it was a new thread - I just replied to an old message to get the php list email address then managed to stuff the subject up.
Thanks for the help though! Best Regards Bob Irwin *** Email [EMAIL PROTECTED] for speedy email response *** ----- Original Message ----- From: "- Edwin -" <[EMAIL PROTECTED]> To: "Bob Irwin" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Friday, June 27, 2003 2:39 PM Subject: Re: [PHP] Sessions Question > > "Bob Irwin" <[EMAIL PROTECTED]> wrote: > > > Aside from the fact that bad code can obviously make sessions hackable, what > > does everyone think about the security of sessions? > > > > I rely on them fairly heavily for low-mid range security on some of my > > scripts, but if I was to do something that involved more sensitive info, are > > sessions bullet proof? Can someone forge them somehow? > > I think you'll find related info if you try Google or the archives for > > "hijack sessions" > > And, talking about "hijacking", you just hijacked this thread which is not good. > > http://marc.theaimsgroup.com/?l=php-general&m=105337989306112&w=2 > > - E - > __________________________________________________ > Do You Yahoo!? > Yahoo! BB is Broadband by Yahoo! > http://bb.yahoo.co.jp/ > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > > Scanned by PeNiCillin http://safe-t-net.pnc.com.au/ > Scanned by PeNiCillin http://safe-t-net.pnc.com.au/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
