Simmo Posted October 18, 2010 Share Posted October 18, 2010 Hi This is the senario: User logs in, if successful connection details for his database are stored in a session variables which are used to access information. Are there any precautions I need to make sure the data in the sessions are safe? Thanks Link to comment https://forums.phpfreaks.com/topic/216154-session-security/ Share on other sites More sharing options...
freelance84 Posted October 18, 2010 Share Posted October 18, 2010 I had a similar query. I think the general thought is that session variables are safe. However if you wanted to make double sure then you could still run any sanitizing checks on them. Just be sure to only run data once through the mysql_real_escape_string before entering into mysql, else you end up with undesirable results Link to comment https://forums.phpfreaks.com/topic/216154-session-security/#findComment-1123380 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.