>>>>> "Jan" == Jan Eden <[EMAIL PROTECTED]> writes:
Jan> But after committing the data to my database, I use CGI's print Jan> $q->redirect() to call the script again, this time with the user Jan> name and password as parameters visible in the browser's address Jan> bar. Jan> How can I circumvent making the parameters visible? Is there an Jan> alternative method for redirection (in fact, it's a recursive Jan> call to the script)? Redirect using a session ID instead. Generate a nice unguessable value, and then tie that with a server-side database to the actual username. -- Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095 <[EMAIL PROTECTED]> <URL:http://www.stonehenge.com/merlyn/> Perl/Unix/security consulting, Technical writing, Comedy, etc. etc. See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training! -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] <http://learn.perl.org/> <http://learn.perl.org/first-response>