You may also want to store a hidden field in every form with a sesionid that
is generated by you. Depending on how unique the number needs to be, we use
either the number generated by mod_unique_id - potentially less reliable -
(a part of the standard apache dist) or generate one with MD5 - generally
more reliable.
Joe
-----Original Message-----
From: Jonathan Hilgeman [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 25, 2001 11:51 AM
To: 'Ilya Martynov'
Cc: '[EMAIL PROTECTED]'
Subject: RE: Apache::Session / No-Cookie-Tracking
The feeling of magic only lasts until you know how it's done, and I have
seen the light.
What happens is that they use a per-session cookie, so it doesn't appear in
my temp folder. But, if per-session cookies are disabled, then it relies on
the IP address. I guess that is better than just one method, but I think I
may use the same method, but base the no-cookie method on both IP address
AND HTTP_USER_AGENT to try to make things more unique.
Jonathan
-----Original Message-----
From: Ilya Martynov [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 25, 2001 9:35 AM
To: Jonathan Hilgeman
Subject: Re: Apache::Session / No-Cookie-Tracking
JH> Sure - I believe in magic, depending on your definition of it. I KNOW
JH> there's a 4th method, because I've seen it work. There is an e-commerce
web
JH> site which uses an outside cart programmed in CGI (Perl?). The original
web
JH> site passes no identifying marks such as the session ID through the URL
or
JH> through the form's submit button to add an item to the cart. I know,
because
JH> I designed and created the web site.
JH> [..skip..]
Interesting. If you will say me url of your web site where you are
using this outside cart probably I'll find how they do tracking.
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
| Ilya Martynov (http://martynov.org/) |
| GnuPG 1024D/323BDEE6 D7F7 561E 4C1D 8A15 8E80 E4AE BE1A 53EB 323B DEE6 |
| AGAVA Software Company (http://www.agava.com/) |
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
