Re: [Phplib-users] store the IP in the session
Brought to you by:
nhruby,
richardarcher
Menu
▾
▴
Re: [Phplib-users] store the IP in the session
|
From: Marko K. <M.K...@os...> - 2002-12-05 08:07:45
|
> Excuse me, but if I propose you to click on a link as > https://phplib.sourceforge.net/showoff.php3?PHPSESSID=1 ^^^^^^^^ yes of course this is still possible... :( > you click on it, you login, you place it in your bookmarks, can't I > steal it afterwards, forever and ever, as long as you use that bookmark? well, in case trans_sid is set to on and you're not restricting your users to work with cookies, yes. Sorry, I followed joe's advice to disable session-id transfer via url, so I wasn't aware of this, looks like. Marko |
