1. Should I encrypt url strings so that users are not enticed to play with them? 2. If so, what is the best way to go about it?
I'm building a site/app and many things are done by passing variables through url's. I see this done all the time with facebook (profile id's), forums (page view, sorting), and other sites. ex. http://forums.anandtech.com/forumdisplay.php?f=14&order=desc&page=2 I'm just wondering if it's worth the effort to try and obfuscate the url string for security reasons. I know this isn't limited to just OpenBD, but as I'm deploying this on OpenBD I'll be looking at how to do this with it's toolset. -Jaon -- Open BlueDragon Public Mailing List http://www.openbluedragon.org/ http://twitter.com/OpenBlueDragon official manual: http://www.openbluedragon.org/manual/ Ready2Run CFML http://www.openbluedragon.org/openbdjam/ mailing list - http://groups.google.com/group/openbd?hl=en
