sander, this isn't so much a problem with people using the back button or whatever, but if you set all your pages not to cache
header("Expires: 0"); header("Cache-Control: no-cache"); will do that, then also require a cookie once they are logged in. during the logout process (and have the cookie expire in 10 minutes or something) you kill the cookie/session then if someone tries to access the secured pages, they don't have a cookie and are denied access. HTH Beau // -----Original Message----- // From: Sander Peters [mailto:[EMAIL PROTECTED]] // Sent: Monday, 8 July 2002 4:28 AM // To: [EMAIL PROTECTED] // Subject: [PHP-DB] disable backbutton // // // Hello, // // I would like to make a page expire or disable the backbutton // (clear the // history). // Why? I'm developping a database-related programm in // php/mysql and people can // log in and out, but nobody should be able to use the // backbutton to be in // the system again as the user that just logged of. // // Can somebody help me? // Thanks in advance! // // Sander Peters // // // // -- // PHP Database Mailing List (http://www.php.net/) // To unsubscribe, visit: http://www.php.net/unsub.php // -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php