[nycphp-talk] Session Thoughts
Analysis & Solutions
danielc at analysisandsolutions.com
Fri Oct 31 14:03:25 EST 2003
Hi Keith:
On Fri, Oct 31, 2003 at 12:44:05PM -0500, Keith Richardson wrote:
>
> for a little bit of stability, you could store the session id and ip address
> in a database, so that that session can only be used by that ip.. but that
> wouldnt help people who move from computer to computer..
Or who use AOL. Don't rely on IP addresses when doing session validation.
--Dan
--
FREE scripts that make web and database programming easier
http://www.analysisandsolutions.com/software/
T H E A N A L Y S I S A N D S O L U T I O N S C O M P A N Y
4015 7th Ave #4AJ, Brooklyn NY v: 718-854-0335 f: 718-854-0409
More information about the talk
mailing list