Rp.: Re: Rp.: Re: Rp.: Re: [Phplib-users] Doc suggestions
Brought to you by:
nhruby,
richardarcher
Menu
▾
▴
Rp.: Re: Rp.: Re: Rp.: Re: [Phplib-users] Doc suggestions
|
From: Giancarlo <gia...@na...> - 2002-07-09 13:54:28
|
Maxim Derkachev <max...@bo...> a écrit le 9/7/02 11:28: >Hello, Giancarlo, > >> I would like to know which >other major scripting >language allows any >> session propagation other >than cookie. > >Any language. It is not >question of language. I Ok, but this was the most'mundane' and less significant among a series of other questions: -don't you beleive that, among these various propagations, cookies offer more guarantees -is it right to downgrade everybody's security to the minimum common of those who have cookies disabled, whith an effect exactly opposite of their reason to do so. Shouldn't it be more right then to confine that to only those who cannot afford a better way? -what other session mngmnt allows arbitrary id creation and what can be a honest use of it? -what about issue a new session and move to it after authenticating? -what about keeping track of sess creation date & initial mode, and consider a change of mode at the same level as a new client (mode coherence?). - what is the use of the auth['uid']='form' status, if not better security? Gian |
