On Wed, 10 Oct 2001 17:23:04 -0700 (PDT) Ask Bjoern Hansen <[EMAIL PROTECTED]> wrote:
> > Apache::Session::Generate::ModUsertrack > > http://bulknews.net/lib/archives/Apache-Session-Generate-ModUsertrack-0.01.tar.gz > > http://bulknews.net/lib/archives/Apache-Session-Generate-ModUsertrack-0.01.html > > > > uses mod_usertrack's cookie for session id. > > Don't do that! mod_usertrack is not meant to be used for secure > session ids. I know, I know! just an example of using *already tracked* cookie for newly generated sessions. My another plan is to release my session id tracking modules, which Apache::Session doesn't do. -- Tatsuhiko Miyagawa <[EMAIL PROTECTED]>
