Hi,
I want to use PHP session manager but I have some problems,
I want the session start in a login page so I do this for example:
after authenticating...
session_start();
session_register("username");
then I want the user to be able to see his own pages, what do I have to do
in those pages?
simply check $username and bring up the user's page ? but this makes it
possible for any hacker to send a cookie with username and see that page. I
know that PHP stores a unique random number for each session but how can I
check that it matches with the number in the cookie.
help me please I'm really confused !
Thanks
Arash Dejkam
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]