> (c) Obviously, this won't prevent someone from
> faking a username via the querystring, so you have to
> specify that it's a cookie:
>
> if(!isset($_COOKIE["username"])) {
> header("Location: http://www.mysite.com/login.php";);
> exit;
> }Note that nothing prevents users from faking a username via their own cookie either. -Rasmus -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
