Hi, Thanks for replying.
> First of all, I bet you are using PHP sessions, and you have done nothing > beyond getting them to work, right? One important note about PHP sessions is > that they provide the mechanism only; it is your job to provide whatever > security you deem appropriate. Yep, I just created the session and nothing beyond. Am new to PHP and first time/project user with sessions. now what to do? According to the (link that you sent me) docs this is the only one that seems a bit feasible: session.use_only_cookies I cant have ssl as its a shared webhosting and i dont have my own IP. Globals have to be on as a lot of programs are dependant on them. session.use_trans_sid is set to 1 What do you suggest? Thanks, -Ryan -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
