-----BEGIN PGP SIGNED MESSAGE-----
you could save the password to a database, associated with
an ID number, then pass the ID number.
id | password
12345 | blah$$
Scott Hurring - Internet Programmer
> -----Original Message-----
> From: Floyd Baker [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, January 17, 2002 1:36 PM
> To: Jason Wong
> Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: Re: [PHP] Passing vars w/refresh w/register globals off?
> On Fri, 18 Jan 2002 01:03:19 +0800, you wrote:
> >On Friday 18 January 2002 00:41, Floyd Baker wrote:
> >> On Thu, 17 Jan 2002 07:06:50 +0200, you wrote:
> >> >What do you mean by 'hidden'? If you're talking about a hidden form
> >> >input, how can it not be post?
> >> >
> >> >Bogdan
> >> Just saying I've tried it. Figured it wouldn't work but wasn't sure
> >> how 'refresh' might relate to 'post'. Post passing works fine with
> >> $_request on the other end but I've got a lot of this refresh kind of
> >> passing that doesn't work, and not sure how best to fix it.
> >> I don't want to rewrite the entire method to not include refresh. :-<
> >If they are refresh redirects as in using the META tags then you're not
> >going to get any form (POST) data. Perhaps you can elaborate on what you're
> >trying to do. And if appropriate, post some code.
> >Jason Wong -> Gremlins Associates -> www.gremlins.com.hk
> >Sorry, no fortune this time.
> The thing is, I *was* using GET in the refresh line and I guess I
> wasn't saying that. Moreover I want to pass passwords in the same
> transfer but obviously letting them show up in the url is not cool...
> My question should be more like, how can one pass variables in a way
> that doesn't use a form but is still secure?
> And thanks too for asking. I hope everyone understands that even
> questions make it easier for a person to focus their thoughts. I hate
> to ask dumb questions, or put things the wrong way, but the problem is
> I don't know they're dumb at first. One little question I didn't
> think to ask myself can make it all come clear.
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> To contact the list administrators, e-mail: [EMAIL PROTECTED]
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
-----END PGP SIGNATURE-----
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]