Agreed. Sessions are much more secure and convienient to use too. Since it's not reliant on the client to have cookies enabled, that's another benefit. Plus it's MUCH harder for a client to spoof/alter a session variable if you use the $_SESSION['myvar']
> -----Original Message----- > From: Chris Shiflett [mailto:[EMAIL PROTECTED]] > Sent: Friday, January 17, 2003 9:29 AM > To: Cesar Aracena; [EMAIL PROTECTED] > Subject: Re: [PHP] Sessions or Cookies? > > > --- Cesar Aracena <[EMAIL PROTECTED]> wrote: > > Should I use the no-so-secure old cookies method > > or should I start a new session every time a client > > drops in and handle each cart by session name or ID? > > My advice is to only use cookies to identify a Web client. > Any data you want to associate with that Web client (user > data, for example) should be stored on the server - > database, session store, etc. > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
