Hello Dist,
What are some best practices on an initial form taking a PW/ID from a
user to login. Right now one method which seems to be really unsecured,
is to take them, check them against the PW/ID stored in the database and
permit/deny against that. And for passing this info - or a token -
between pages, using URL via the URI path and/or using hidden 'post'ed
variables.
Anyone who would like to email me offline on details, you're welcomed.
Thanks In Advance,
--
Email: [EMAIL PROTECTED]
WebSite: http://www.linuxlouis.net
"Open the pod bay doors HAL!" -2001: A Space Odyssey
"Good morning starshine, the Earth says hello." -Willy Wonka
