My site uses a scheme whereby a session variable (say, $logged_in) is
checked for. If the variable is not set to 1, then header("Location:
./index.php") is used to redirect the browser to index.php, where they
are offered an opportunity to log in (setting the session variable
$logged_in to 1).
But then I thought to myself, could this page still be accessed by a
script or a spider, or some other agent besides a browser? I don't know
much about how HTTP works, but I am wondering if this is an adequate
means of protecting my site from unlogged-in visitors.
TIA,
Erik
----
Erik Price
Web Developer Temp
Media Lab, H.H. Brown
[EMAIL PROTECTED]
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
