on 25/02/03 1:10 PM, Miguel Angelo ([EMAIL PROTECTED]) wrote: > From what i have studid the session management, were you start a session > id, and can put in several variables... My question is this, this variables > remain were ? on the user browser (cookies, url enconding ?) or does the > user just receive the single session id, and the rest remain on the server ? > This is a important security consideration for me.
The session ID is stored on the browser (either with cookies or URL). The session var/value pairs are stored on the server. Justin -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php