greatstar00 Posted January 21, 2010 Share Posted January 21, 2010 I read a forum, it said, cookie should be used to store none sensitive data and they said, for a log in form, we shouldnt even store encrypted password, and encrypted username. They said, only to store session. my question is how can i let the user log in automatically like 10 days later, if he choose remember me, which with cookie set at his computer because we shouldnt hold the cookie that long. or we can hold it that long, without server performance slow down alot? (imagine i have 10000+ users) Quote Link to comment https://forums.phpfreaks.com/topic/189289-security-about-cookie-login/ Share on other sites More sharing options...
greatstar00 Posted January 22, 2010 Author Share Posted January 22, 2010 pumps, can someone tell me please Quote Link to comment https://forums.phpfreaks.com/topic/189289-security-about-cookie-login/#findComment-999721 Share on other sites More sharing options...
gizmola Posted January 22, 2010 Share Posted January 22, 2010 I have discussed this in several threads already this week. Try looking at some of the other threads I've answered. Quote Link to comment https://forums.phpfreaks.com/topic/189289-security-about-cookie-login/#findComment-999724 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.