Hi, I'm looking for a way to pass crypted session user and password info from one page to another to prevent a user to inquire someone else's data by fooling with the URL. I don't like using hidden inputs to pass such sensitive info, so I thought about using cookies.
However, I can't have a cookie created at all when running CGI's from my local Apache server. I did a little test to know if I was wrong. On the Easy400 web site, there's a demo that illustrates the use of cookies (http://www- 922.ibm.com/cgidev2p/cookie2.pgm) this one works just fine, so this proves that this is not an issue with my browser settings. Now, if I run the same demo from my local server which was implemented with the CGIDEV2 package -- and should be the same as the one available on Easy400 site -- no cookie is created at all. Anybody has a clue? Otherwise, I'm considering using user space which I believe might be even more secure than cookies since only the random userspace name will travel thru the Web, which is additionnaly crypted, has no sense for a malicious user. However, I don't like the idea of accumulating thousands of userspaces thru the day until a purge task wipe them off at night. Cookies also have their downsides since many users disable them from their browsers. Any other proposals? TIA Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/Easy400Group/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
