For any hacker it is quite easy to fake an IP address. If you do something like that it's more likely that you will punish several of your users, because everybody who is connected through a call by call provider can have several IP addresses during one session. > -----Ursprüngliche Nachricht----- > Von: David Oxley [mailto:[EMAIL PROTECTED]] > Gesendet: Donnerstag, 8. Februar 2001 11:38 > An: [EMAIL PROTECTED] > Betreff: HttpSession across virtual hosts <snip/> > 2. If I save the remote ip address and check it during the > AttachSession, is > that secure enough or can some hacker pretend to be the same > ip address? <snip/> --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, email: [EMAIL PROTECTED]
