The Microsoft site says just that, that it is a security precaution.
But I wonder, is it only caused by PHP or ASP pages? If so,
what is to stop me from creating an line in my .htaccess file
that forces the Apache server to treat say .shtml files as .php
files? Wouldn't this fix the problem?
Maybe I'm grabbing at straws...
Also the GET does not send the session variables. It seems that
a single line in the .asp files can fix this problem, so obviously,
IIS is doing something, maybe converting method POST to
There must be a way...
----- Original Message -----
From: "Jonathan Hilgeman" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, July 11, 2001 9:33 AM
Subject: [PHP-DB] Re: Warning: Page has Expired
> You can also change your form to use the GET method instead. That works
> without changing your php.ini file. But don't use GET methods for logging
> or passing secure information. It's much more insecure than POSTing (not
> that POSTing variables is a 100% secure method, either)...
> "Keith Spiller" <[EMAIL PROTECTED]> wrote in message
> I've setup a members directory in mysql that is searchable via different
> field and I limit the number of records.
> I use session variables to remember the number of records to display, what
> the starting record is, what the
> search string and search fields are. At anytime a user can click on an id
> number to do a Select statement
> that queries for that single row of data. Afterward, if the user hits
> browsers back button I get:
> "Warning: Page has Expired"
> I've noticed allot of sites just ask the user to not use the back button.
> I'm curious if this is caused by an
> error in my code or because I used session variables that might have
> in the last MySQL select
> query. So that when you hit back, the browser is using some sort of
> data while still loading the
> php code? I'm very confused at this point. Is there anything I can do to
> prevent the "Expired Page" warning,
> rather than expecting my viewers to learn to do without it.
> Keith Spiller
> [EMAIL PROTECTED]
> PHP Database Mailing List (http://www.php.net/)
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> To contact the list administrators, e-mail: [EMAIL PROTECTED]
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]