> Is there anyway to prevent session variables from being 
> overwritten by a get string?

PHP will do this automatically *if* you initialize your session variables to
*anything* as soon as you register them. For example,

$sess_auth = "";

If you do this, then session variables will overwrite GET/POST variables,
and the latter will need to be retrieved from the $HTTP_(GET/POST)_VARS

Another approach is to turn register_globals off in php.ini. This is a long
one to explain, but has been covered quite bit here- search the archive.


PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to