[PHP] upload security

2003-10-01 Thread Philippe Lemmerling
I have a question concerning security of my file upload script. I'm using the php upload routines (move_uploaded_file,...) and variables ($_FILES) to upload images to a webdirectory. Everything works fine, meaning that I can upload images BUT only if I change the permission of the directory to whic

[PHP] help on sessions

2003-03-24 Thread Philippe Lemmerling
If I understood correctly, the first time start_session is used, the server will send both a cookie AND rewrite the links in the page with the sessionid appended to it. This seems logical since at the first call for a session the server can not know whether the browser will accept cookies or not. H