> Is there anyway to prevent session variables from being
> overwritten by a get string?
PHP will do this automatically *if* you initialize your session variables to
*anything* as soon as you register them. For example,
$sess_auth = "";
If you do this, then session variables will overwrite GET/POST variables,
and the latter will need to be retrieved from the $HTTP_(GET/POST)_VARS
Another approach is to turn register_globals off in php.ini. This is a long
one to explain, but has been covered quite bit here- search the archive.
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]