Ninjakreborn Posted July 17, 2006 Share Posted July 17, 2006 Here are some things I was thinking, I wanted advice on.I am recently starting to do log in pages, I already know everything about how to do them, anyway, sessions, cookies, databases, whatever.What I want to find out, is my current idea was to use the database to pull the information and check it to make sure it's valid, registering them into session variables, and using that throughout the site, for authentification, what are the chances of a session hijacker, is it as big of a deal as some of the books made it out to be.If ebay for instance did it that way, would it get hacked all the time, or is it a good idea to never use sessions, just looking for a little insight before I start stepping into this. Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.