[nycphp-talk] Storing User Controlled Configs
Chris Shiflett
shiflett at php.net
Tue Sep 7 01:46:09 EDT 2004
--- Mark Armendariz <nyphp at enobrev.com> wrote:
> It can be 'dangerous' to keep all configuration vars in the session as
> session variables are easily edited by anyone who has the time to
> find out how via google.
Mind citing some links you find on Google? I don't think this is nearly as
easy as you make it sound.
Chris
=====
Chris Shiflett - http://shiflett.org/
PHP Security - O'Reilly
Coming Fall 2004
HTTP Developer's Handbook - Sams
http://httphandbook.org/
PHP Community Site
http://phpcommunity.org/
More information about the talk
mailing list