> + <para> > + Therefore, when dealing with sensative information, there should + > always be additional methods to decide whether it is a valid + > session. Sessions are <strong>not reliable</strong> as a secure + > authentication mechanism. > + </para>
So if Im to write an online web-based banking system (either in Java/JSP, PHP, ASP - whatever)... what method would you suggest that IS secure? -- Dan Hardiker [[EMAIL PROTECTED]] ADAM Software & Systems Engineer First Creative Ltd -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, visit: http://www.php.net/unsub.php
