On Mon, 7 Jul 2003 21:07:14 +0100, you wrote: >check sessions >if session is not set >check cookie >if cookie is not set >checkip >if ip is not set >do a reverse ip check >if that too comes clean then allow the person a vote > >as you can see i am trying my best to make sure that the visitor only votes >once, if he/she changes machines this wont work of course but as far as i >can see this should take care of around 99% of the visitors and allow a fair >voteing system...
What happens when many users are behind a single proxy? Or two people log on to the same machine? Just go with the cookie, and recognise that ballot stuffing is inevitable without user authentication, IMO. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php