Jump to content

security about cookie login


greatstar00

Recommended Posts

I read a forum, it said, cookie should be used to store none sensitive data

and they said, for a log in form, we shouldnt even store encrypted password, and encrypted username.

They said, only to store session.

my question is

how can i let the user log in automatically like 10 days later, if he choose remember me, which with cookie set at his computer

because we shouldnt hold the cookie that long. or we can hold it that long, without server performance slow down alot? (imagine i have 10000+ users)

Link to comment
https://forums.phpfreaks.com/topic/189289-security-about-cookie-login/
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.