--- Gerard Samuel <[EMAIL PROTECTED]> wrote: > Its not that I dont want to use GET, Im just heeding the warning about > its insecurities from the manual. The code Im writing, is meant for > others to use, and may not have access to ini directives. But from what > I've read in the archives > (http://marc.theaimsgroup.com/?l=php-general&m=107116421414558&w=2), > that something may be doable within my code. Ill let it sit on the > brain for a bit, and see what needs to be done, where I can "safely" > use the url rewriting feature, for this small pecentage of users...
There is an article on session security in PHP Magazine's free PDF: http://www.phpmag.net/ssl/phppdf/ Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security Handbook Coming mid-2004 HTTP Developer's Handbook http://httphandbook.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
