"Bob Irwin" <[EMAIL PROTECTED]> wrote: > Aside from the fact that bad code can obviously make sessions hackable, what > does everyone think about the security of sessions? > > I rely on them fairly heavily for low-mid range security on some of my > scripts, but if I was to do something that involved more sensitive info, are > sessions bullet proof? Can someone forge them somehow?
I think you'll find related info if you try Google or the archives for "hijack sessions" And, talking about "hijacking", you just hijacked this thread which is not good. http://marc.theaimsgroup.com/?l=php-general&m=105337989306112&w=2 - E - __________________________________________________ Do You Yahoo!? Yahoo! BB is Broadband by Yahoo! http://bb.yahoo.co.jp/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
