anyone heard of this?
In order to assist in preventing session hijacking, when a user first hits my website, CF does some configuring and one of the things I do is set a session variable containing their IP . . . <CFSET session.mem_ip = "#cgi.remote_addr#"> Subsequently, whilst they are logged in, every time they load a page, the session variable is compared to their current IP, to wit: <CFIF session.mem_ip is not "#cgi.remote_addr#"> go to log out . . . </CFIF> Herein is the problem . . . . It appears that a google bot somehow hijacks the user session, triggers the log out . . . . and the user has to log back in . . . and this can happen more than once and randomly . . . Any ideas??? PS: Using CF 5 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:353839 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
