I wouldnt rely on cookies or standard sessions (which use cookies) as a means of security.
You can use sessions, but make sure you have the ini_alter("session.use_cookies", "0"); so that no cookies are used for the session id. This means you'll have to pass the session id in the querystring or post of each page. Regards Jarrad Kabral -----Original Message----- From: John Holmes [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 5 June 2002 11:48 AM To: [EMAIL PROTECTED]; 'php-general' Subject: RE: [PHP] User Authentication Sessions use cookies as it is...so what do you really want to do...what do you want to protect? ---John Holmes... > -----Original Message----- > From: Jule Slootbeek [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, June 04, 2002 9:49 PM > To: php-general > Subject: [PHP] User Authentication > > Hey guys, > > What is the best way for user authentication (now i'm talking about the > most secure and easiest way). > Now i've been using sessions, and i was wondering if cookies were better > and easier... > > any thoughts? > thanks, > > Jule > -- > Jule Slootbeek > [EMAIL PROTECTED] > > http://blindtheory.cjb.net > > > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php