> I would know what did you think of my method to prevent 'piracy'..
> I do like this :
> - A Session is made for each user
> In the session, put 2 value : a flag "userlogged" and the userId
> - In a cookie, I put the session Id and an unique crypted value.
If you're using sessions, there is already a cookie with the session id
in it. Why are you storing crypted values in a cookie? Why not just add
the values to the session and not worry about encrypting it?
> When user go on private parts of the site,
> I check the session, the cookie and database fields for the user..
> The crypted data contains some user values (the encryption is done
> mcrypt lib).
> Is it a good way or is there a better way (without SSL)... ?
> P.E. Baroiller
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php